averecion-lite 1.4.7 โ 1.5.1
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/dashboard/dash.css +296 -1
- package/dashboard/dash.js +90 -0
- package/dashboard/demo-script.md +1 -1
- package/dashboard/index.html +186 -138
- package/dist/server.d.ts.map +1 -1
- package/dist/server.js +10 -0
- package/dist/src/threat-assessment.d.ts +26 -0
- package/dist/src/threat-assessment.d.ts.map +1 -0
- package/dist/src/threat-assessment.js +551 -0
- package/package.json +1 -1
package/dashboard/dash.css
CHANGED
|
@@ -345,15 +345,38 @@ body {
|
|
|
345
345
|
}
|
|
346
346
|
|
|
347
347
|
.dash-main {
|
|
348
|
-
max-width:
|
|
348
|
+
max-width: 1400px;
|
|
349
349
|
margin: 0 auto;
|
|
350
350
|
padding: 2rem;
|
|
351
351
|
}
|
|
352
352
|
|
|
353
|
+
.dash-columns {
|
|
354
|
+
display: grid;
|
|
355
|
+
grid-template-columns: 1fr 1fr;
|
|
356
|
+
gap: 2rem;
|
|
357
|
+
margin-top: 1rem;
|
|
358
|
+
}
|
|
359
|
+
|
|
360
|
+
.dash-col-left,
|
|
361
|
+
.dash-col-right {
|
|
362
|
+
display: flex;
|
|
363
|
+
flex-direction: column;
|
|
364
|
+
gap: 0;
|
|
365
|
+
}
|
|
366
|
+
|
|
353
367
|
.dash-main section {
|
|
354
368
|
margin-bottom: 2rem;
|
|
355
369
|
}
|
|
356
370
|
|
|
371
|
+
@media (max-width: 1024px) {
|
|
372
|
+
.dash-columns {
|
|
373
|
+
grid-template-columns: 1fr;
|
|
374
|
+
}
|
|
375
|
+
.dash-main {
|
|
376
|
+
max-width: 800px;
|
|
377
|
+
}
|
|
378
|
+
}
|
|
379
|
+
|
|
357
380
|
.dash-main h2 {
|
|
358
381
|
font-size: 1.25rem;
|
|
359
382
|
margin-bottom: 1rem;
|
|
@@ -1132,3 +1155,275 @@ body {
|
|
|
1132
1155
|
color: var(--success);
|
|
1133
1156
|
font-style: italic;
|
|
1134
1157
|
}
|
|
1158
|
+
|
|
1159
|
+
.security-arch-section {
|
|
1160
|
+
margin-top: 2rem;
|
|
1161
|
+
}
|
|
1162
|
+
|
|
1163
|
+
.security-arch-grid {
|
|
1164
|
+
display: grid;
|
|
1165
|
+
grid-template-columns: repeat(2, 1fr);
|
|
1166
|
+
gap: 0.75rem;
|
|
1167
|
+
margin-top: 1rem;
|
|
1168
|
+
}
|
|
1169
|
+
|
|
1170
|
+
.dash-col-right .security-arch-grid {
|
|
1171
|
+
grid-template-columns: 1fr;
|
|
1172
|
+
}
|
|
1173
|
+
|
|
1174
|
+
.arch-item {
|
|
1175
|
+
background: var(--bg-card);
|
|
1176
|
+
border: 1px solid var(--border);
|
|
1177
|
+
border-radius: 12px;
|
|
1178
|
+
padding: 1.25rem;
|
|
1179
|
+
transition: border-color 0.2s;
|
|
1180
|
+
}
|
|
1181
|
+
|
|
1182
|
+
.arch-item:hover {
|
|
1183
|
+
border-color: var(--primary);
|
|
1184
|
+
}
|
|
1185
|
+
|
|
1186
|
+
.arch-icon {
|
|
1187
|
+
font-size: 1.5rem;
|
|
1188
|
+
margin-bottom: 0.5rem;
|
|
1189
|
+
}
|
|
1190
|
+
|
|
1191
|
+
.arch-title {
|
|
1192
|
+
font-weight: 600;
|
|
1193
|
+
color: var(--text-primary);
|
|
1194
|
+
margin-bottom: 0.4rem;
|
|
1195
|
+
font-size: 0.95rem;
|
|
1196
|
+
}
|
|
1197
|
+
|
|
1198
|
+
.arch-desc {
|
|
1199
|
+
font-size: 0.8rem;
|
|
1200
|
+
color: var(--text-secondary);
|
|
1201
|
+
line-height: 1.5;
|
|
1202
|
+
}
|
|
1203
|
+
|
|
1204
|
+
.threat-section {
|
|
1205
|
+
margin-top: 2rem;
|
|
1206
|
+
}
|
|
1207
|
+
|
|
1208
|
+
.threat-header {
|
|
1209
|
+
margin-top: 1rem;
|
|
1210
|
+
}
|
|
1211
|
+
|
|
1212
|
+
.threat-scan-btn {
|
|
1213
|
+
background: linear-gradient(135deg, #7c3aed 0%, #a855f7 100%);
|
|
1214
|
+
border: none;
|
|
1215
|
+
color: #fff;
|
|
1216
|
+
padding: 0.75rem 1.5rem;
|
|
1217
|
+
border-radius: 10px;
|
|
1218
|
+
font-size: 0.95rem;
|
|
1219
|
+
font-weight: 600;
|
|
1220
|
+
cursor: pointer;
|
|
1221
|
+
transition: all 0.2s;
|
|
1222
|
+
box-shadow: 0 4px 15px rgba(124, 58, 237, 0.3);
|
|
1223
|
+
}
|
|
1224
|
+
|
|
1225
|
+
.threat-scan-btn:hover {
|
|
1226
|
+
transform: translateY(-1px);
|
|
1227
|
+
box-shadow: 0 6px 20px rgba(124, 58, 237, 0.4);
|
|
1228
|
+
}
|
|
1229
|
+
|
|
1230
|
+
.threat-scan-btn:disabled {
|
|
1231
|
+
opacity: 0.7;
|
|
1232
|
+
cursor: not-allowed;
|
|
1233
|
+
transform: none;
|
|
1234
|
+
}
|
|
1235
|
+
|
|
1236
|
+
.threat-score-display {
|
|
1237
|
+
display: flex;
|
|
1238
|
+
align-items: center;
|
|
1239
|
+
gap: 1.5rem;
|
|
1240
|
+
margin-top: 1rem;
|
|
1241
|
+
padding: 1.25rem;
|
|
1242
|
+
background: var(--bg-card);
|
|
1243
|
+
border: 1px solid var(--border);
|
|
1244
|
+
border-radius: 12px;
|
|
1245
|
+
}
|
|
1246
|
+
|
|
1247
|
+
.threat-grade {
|
|
1248
|
+
font-size: 2.5rem;
|
|
1249
|
+
font-weight: 800;
|
|
1250
|
+
width: 60px;
|
|
1251
|
+
height: 60px;
|
|
1252
|
+
display: flex;
|
|
1253
|
+
align-items: center;
|
|
1254
|
+
justify-content: center;
|
|
1255
|
+
border-radius: 12px;
|
|
1256
|
+
background: var(--bg-card-hover);
|
|
1257
|
+
}
|
|
1258
|
+
|
|
1259
|
+
.threat-grade.grade-a { color: var(--success); border: 2px solid var(--success); }
|
|
1260
|
+
.threat-grade.grade-b { color: #60a5fa; border: 2px solid #60a5fa; }
|
|
1261
|
+
.threat-grade.grade-c { color: var(--warning); border: 2px solid var(--warning); }
|
|
1262
|
+
.threat-grade.grade-d { color: #f97316; border: 2px solid #f97316; }
|
|
1263
|
+
.threat-grade.grade-f { color: var(--danger); border: 2px solid var(--danger); }
|
|
1264
|
+
|
|
1265
|
+
.threat-score-info {
|
|
1266
|
+
display: flex;
|
|
1267
|
+
flex-direction: column;
|
|
1268
|
+
}
|
|
1269
|
+
|
|
1270
|
+
.threat-score-value {
|
|
1271
|
+
font-size: 1.3rem;
|
|
1272
|
+
font-weight: 700;
|
|
1273
|
+
color: var(--text-primary);
|
|
1274
|
+
}
|
|
1275
|
+
|
|
1276
|
+
.threat-score-label {
|
|
1277
|
+
font-size: 0.8rem;
|
|
1278
|
+
color: var(--text-secondary);
|
|
1279
|
+
}
|
|
1280
|
+
|
|
1281
|
+
.threat-summary {
|
|
1282
|
+
display: flex;
|
|
1283
|
+
gap: 0.75rem;
|
|
1284
|
+
margin-left: auto;
|
|
1285
|
+
flex-wrap: wrap;
|
|
1286
|
+
}
|
|
1287
|
+
|
|
1288
|
+
.threat-summary-badge {
|
|
1289
|
+
padding: 0.3rem 0.6rem;
|
|
1290
|
+
border-radius: 6px;
|
|
1291
|
+
font-size: 0.75rem;
|
|
1292
|
+
font-weight: 600;
|
|
1293
|
+
}
|
|
1294
|
+
|
|
1295
|
+
.threat-summary-badge.critical { background: rgba(239, 68, 68, 0.2); color: var(--danger); }
|
|
1296
|
+
.threat-summary-badge.high { background: rgba(249, 115, 22, 0.2); color: #f97316; }
|
|
1297
|
+
.threat-summary-badge.medium { background: rgba(234, 179, 8, 0.2); color: var(--warning); }
|
|
1298
|
+
.threat-summary-badge.low { background: rgba(96, 165, 250, 0.2); color: #60a5fa; }
|
|
1299
|
+
.threat-summary-badge.passed { background: rgba(34, 197, 94, 0.2); color: var(--success); }
|
|
1300
|
+
|
|
1301
|
+
.threat-findings-toggle {
|
|
1302
|
+
display: flex;
|
|
1303
|
+
align-items: center;
|
|
1304
|
+
gap: 0.5rem;
|
|
1305
|
+
margin-top: 0.75rem;
|
|
1306
|
+
padding: 0.5rem 0.75rem;
|
|
1307
|
+
background: var(--bg-card);
|
|
1308
|
+
border: 1px solid var(--border);
|
|
1309
|
+
border-radius: 8px;
|
|
1310
|
+
cursor: pointer;
|
|
1311
|
+
color: var(--text-secondary);
|
|
1312
|
+
font-size: 0.8rem;
|
|
1313
|
+
transition: all 0.2s;
|
|
1314
|
+
width: 100%;
|
|
1315
|
+
text-align: left;
|
|
1316
|
+
}
|
|
1317
|
+
|
|
1318
|
+
.threat-findings-toggle:hover {
|
|
1319
|
+
border-color: var(--primary, #7c3aed);
|
|
1320
|
+
color: var(--text-primary);
|
|
1321
|
+
}
|
|
1322
|
+
|
|
1323
|
+
.threat-findings-toggle .toggle-arrow {
|
|
1324
|
+
transition: transform 0.2s;
|
|
1325
|
+
font-size: 0.7rem;
|
|
1326
|
+
}
|
|
1327
|
+
|
|
1328
|
+
.threat-findings-toggle.expanded .toggle-arrow {
|
|
1329
|
+
transform: rotate(90deg);
|
|
1330
|
+
}
|
|
1331
|
+
|
|
1332
|
+
.threat-findings {
|
|
1333
|
+
margin-top: 0.5rem;
|
|
1334
|
+
display: flex;
|
|
1335
|
+
flex-direction: column;
|
|
1336
|
+
gap: 0.5rem;
|
|
1337
|
+
}
|
|
1338
|
+
|
|
1339
|
+
.threat-findings.collapsed {
|
|
1340
|
+
display: none;
|
|
1341
|
+
}
|
|
1342
|
+
|
|
1343
|
+
.threat-finding {
|
|
1344
|
+
background: var(--bg-card);
|
|
1345
|
+
border: 1px solid var(--border);
|
|
1346
|
+
border-radius: 10px;
|
|
1347
|
+
padding: 1rem 1.25rem;
|
|
1348
|
+
display: flex;
|
|
1349
|
+
align-items: flex-start;
|
|
1350
|
+
gap: 0.75rem;
|
|
1351
|
+
animation: slideInLeft 0.3s ease-out;
|
|
1352
|
+
transition: border-color 0.2s;
|
|
1353
|
+
}
|
|
1354
|
+
|
|
1355
|
+
.threat-finding:hover {
|
|
1356
|
+
border-color: var(--border-hover, #333);
|
|
1357
|
+
}
|
|
1358
|
+
|
|
1359
|
+
.threat-finding.finding-passed {
|
|
1360
|
+
opacity: 0.7;
|
|
1361
|
+
}
|
|
1362
|
+
|
|
1363
|
+
.finding-severity {
|
|
1364
|
+
min-width: 28px;
|
|
1365
|
+
height: 28px;
|
|
1366
|
+
border-radius: 6px;
|
|
1367
|
+
display: flex;
|
|
1368
|
+
align-items: center;
|
|
1369
|
+
justify-content: center;
|
|
1370
|
+
font-size: 0.85rem;
|
|
1371
|
+
font-weight: 700;
|
|
1372
|
+
flex-shrink: 0;
|
|
1373
|
+
}
|
|
1374
|
+
|
|
1375
|
+
.finding-severity.critical { background: rgba(239, 68, 68, 0.2); color: var(--danger); }
|
|
1376
|
+
.finding-severity.high { background: rgba(249, 115, 22, 0.2); color: #f97316; }
|
|
1377
|
+
.finding-severity.medium { background: rgba(234, 179, 8, 0.2); color: var(--warning); }
|
|
1378
|
+
.finding-severity.low { background: rgba(96, 165, 250, 0.2); color: #60a5fa; }
|
|
1379
|
+
.finding-severity.info { background: rgba(148, 163, 184, 0.2); color: var(--text-secondary); }
|
|
1380
|
+
.finding-severity.pass { background: rgba(34, 197, 94, 0.2); color: var(--success); }
|
|
1381
|
+
|
|
1382
|
+
.finding-content {
|
|
1383
|
+
flex: 1;
|
|
1384
|
+
min-width: 0;
|
|
1385
|
+
}
|
|
1386
|
+
|
|
1387
|
+
.finding-title {
|
|
1388
|
+
font-weight: 600;
|
|
1389
|
+
color: var(--text-primary);
|
|
1390
|
+
font-size: 0.9rem;
|
|
1391
|
+
margin-bottom: 0.25rem;
|
|
1392
|
+
}
|
|
1393
|
+
|
|
1394
|
+
.finding-desc {
|
|
1395
|
+
font-size: 0.8rem;
|
|
1396
|
+
color: var(--text-secondary);
|
|
1397
|
+
line-height: 1.4;
|
|
1398
|
+
}
|
|
1399
|
+
|
|
1400
|
+
.finding-recommendation {
|
|
1401
|
+
font-size: 0.75rem;
|
|
1402
|
+
color: var(--primary);
|
|
1403
|
+
margin-top: 0.4rem;
|
|
1404
|
+
font-style: italic;
|
|
1405
|
+
}
|
|
1406
|
+
|
|
1407
|
+
.finding-category {
|
|
1408
|
+
font-size: 0.65rem;
|
|
1409
|
+
text-transform: uppercase;
|
|
1410
|
+
letter-spacing: 0.05em;
|
|
1411
|
+
color: var(--text-muted);
|
|
1412
|
+
padding: 0.2rem 0.5rem;
|
|
1413
|
+
background: var(--bg-card-hover);
|
|
1414
|
+
border-radius: 4px;
|
|
1415
|
+
flex-shrink: 0;
|
|
1416
|
+
}
|
|
1417
|
+
|
|
1418
|
+
@media (max-width: 768px) {
|
|
1419
|
+
.security-arch-grid {
|
|
1420
|
+
grid-template-columns: 1fr;
|
|
1421
|
+
}
|
|
1422
|
+
.threat-score-display {
|
|
1423
|
+
flex-wrap: wrap;
|
|
1424
|
+
}
|
|
1425
|
+
.threat-summary {
|
|
1426
|
+
margin-left: 0;
|
|
1427
|
+
margin-top: 0.5rem;
|
|
1428
|
+
}
|
|
1429
|
+
}
|
package/dashboard/dash.js
CHANGED
|
@@ -911,6 +911,7 @@
|
|
|
911
911
|
initProtectionToggle();
|
|
912
912
|
initNotificationToggle();
|
|
913
913
|
initResetButton();
|
|
914
|
+
initThreatScan();
|
|
914
915
|
|
|
915
916
|
function initNotificationToggle() {
|
|
916
917
|
const btn = document.getElementById("btn-notifications");
|
|
@@ -948,6 +949,95 @@
|
|
|
948
949
|
});
|
|
949
950
|
}
|
|
950
951
|
|
|
952
|
+
function initThreatScan() {
|
|
953
|
+
const btn = document.getElementById("btn-scan");
|
|
954
|
+
const scoreDisplay = document.getElementById("threat-score-display");
|
|
955
|
+
const findingsEl = document.getElementById("threat-findings");
|
|
956
|
+
if (!btn || !scoreDisplay || !findingsEl) return;
|
|
957
|
+
|
|
958
|
+
btn.addEventListener("click", async () => {
|
|
959
|
+
btn.disabled = true;
|
|
960
|
+
btn.textContent = "๐ Scanning...";
|
|
961
|
+
|
|
962
|
+
try {
|
|
963
|
+
const headers = {};
|
|
964
|
+
if (SECRET) headers["X-Lite-Secret"] = SECRET;
|
|
965
|
+
const res = await fetch("/api/threat-assessment", { headers });
|
|
966
|
+
if (!res.ok) throw new Error("Scan failed");
|
|
967
|
+
const data = await res.json();
|
|
968
|
+
renderThreatResults(data, scoreDisplay, findingsEl);
|
|
969
|
+
btn.textContent = "๐ Rescan";
|
|
970
|
+
} catch (err) {
|
|
971
|
+
btn.textContent = "โ ๏ธ Scan Failed โ Retry";
|
|
972
|
+
console.error("Threat scan error:", err);
|
|
973
|
+
}
|
|
974
|
+
btn.disabled = false;
|
|
975
|
+
});
|
|
976
|
+
}
|
|
977
|
+
|
|
978
|
+
function renderThreatResults(data, scoreDisplay, findingsEl) {
|
|
979
|
+
scoreDisplay.classList.remove("hidden");
|
|
980
|
+
|
|
981
|
+
const gradeEl = document.getElementById("threat-grade");
|
|
982
|
+
const scoreVal = document.getElementById("threat-score-value");
|
|
983
|
+
const summaryEl = document.getElementById("threat-summary");
|
|
984
|
+
|
|
985
|
+
gradeEl.textContent = data.grade;
|
|
986
|
+
gradeEl.className = "threat-grade grade-" + data.grade.toLowerCase();
|
|
987
|
+
scoreVal.textContent = data.score + "/100";
|
|
988
|
+
|
|
989
|
+
let summaryHtml = "";
|
|
990
|
+
if (data.summary.critical > 0) summaryHtml += `<span class="threat-summary-badge critical">${data.summary.critical} Critical</span>`;
|
|
991
|
+
if (data.summary.high > 0) summaryHtml += `<span class="threat-summary-badge high">${data.summary.high} High</span>`;
|
|
992
|
+
if (data.summary.medium > 0) summaryHtml += `<span class="threat-summary-badge medium">${data.summary.medium} Medium</span>`;
|
|
993
|
+
if (data.summary.low > 0) summaryHtml += `<span class="threat-summary-badge low">${data.summary.low} Low</span>`;
|
|
994
|
+
summaryHtml += `<span class="threat-summary-badge passed">${data.summary.passed} Passed</span>`;
|
|
995
|
+
summaryEl.innerHTML = summaryHtml;
|
|
996
|
+
|
|
997
|
+
const failed = data.findings.filter(f => !f.passed);
|
|
998
|
+
const passed = data.findings.filter(f => f.passed);
|
|
999
|
+
const sorted = [...failed, ...passed];
|
|
1000
|
+
const failCount = failed.length;
|
|
1001
|
+
|
|
1002
|
+
let existingToggle = document.querySelector(".threat-findings-toggle");
|
|
1003
|
+
if (!existingToggle) {
|
|
1004
|
+
existingToggle = document.createElement("button");
|
|
1005
|
+
existingToggle.className = "threat-findings-toggle";
|
|
1006
|
+
existingToggle.setAttribute("data-testid", "btn-findings-toggle");
|
|
1007
|
+
findingsEl.parentNode.insertBefore(existingToggle, findingsEl);
|
|
1008
|
+
existingToggle.addEventListener("click", () => {
|
|
1009
|
+
const isCollapsed = findingsEl.classList.contains("collapsed");
|
|
1010
|
+
if (isCollapsed) {
|
|
1011
|
+
findingsEl.classList.remove("collapsed", "hidden");
|
|
1012
|
+
existingToggle.classList.add("expanded");
|
|
1013
|
+
} else {
|
|
1014
|
+
findingsEl.classList.add("collapsed");
|
|
1015
|
+
existingToggle.classList.remove("expanded");
|
|
1016
|
+
}
|
|
1017
|
+
existingToggle.querySelector(".toggle-label").textContent =
|
|
1018
|
+
findingsEl.classList.contains("collapsed") ? `Show ${data.findings.length} findings (${failCount} issues)` : "Hide findings";
|
|
1019
|
+
});
|
|
1020
|
+
}
|
|
1021
|
+
existingToggle.innerHTML = `<span class="toggle-arrow">โถ</span> <span class="toggle-label">Show ${data.findings.length} findings (${failCount} issues)</span>`;
|
|
1022
|
+
findingsEl.classList.add("collapsed");
|
|
1023
|
+
existingToggle.classList.remove("expanded");
|
|
1024
|
+
|
|
1025
|
+
findingsEl.innerHTML = sorted.map(f => {
|
|
1026
|
+
const sevIcon = f.passed ? "โ" : (f.severity === "critical" ? "!!" : f.severity === "high" ? "!" : f.severity === "medium" ? "~" : "ยท");
|
|
1027
|
+
const sevClass = f.passed ? "pass" : f.severity;
|
|
1028
|
+
const passedClass = f.passed ? "finding-passed" : "";
|
|
1029
|
+
return `<div class="threat-finding ${passedClass}">
|
|
1030
|
+
<div class="finding-severity ${sevClass}">${sevIcon}</div>
|
|
1031
|
+
<div class="finding-content">
|
|
1032
|
+
<div class="finding-title">${f.title}</div>
|
|
1033
|
+
<div class="finding-desc">${f.description}</div>
|
|
1034
|
+
${!f.passed ? `<div class="finding-recommendation">๐ก ${f.recommendation}</div>` : ""}
|
|
1035
|
+
</div>
|
|
1036
|
+
<div class="finding-category">${f.category}</div>
|
|
1037
|
+
</div>`;
|
|
1038
|
+
}).join("");
|
|
1039
|
+
}
|
|
1040
|
+
|
|
951
1041
|
function initResetButton() {
|
|
952
1042
|
const btn = document.getElementById("btn-reset");
|
|
953
1043
|
if (!btn) return;
|