aws-security-mcp 0.1.0

package/dist/src/commands/dashboard.d.ts

@@ -0,0 +1,3 @@
+declare function startDashboard(port?: number): void;
+
+export { startDashboard };

package/dist/src/commands/dashboard.js

@@ -0,0 +1,90 @@
+// src/commands/dashboard.ts
+import { createServer } from "http";
+import { readFile } from "fs/promises";
+import { join, extname, resolve } from "path";
+import { existsSync, copyFileSync } from "fs";
+import { fileURLToPath } from "url";
+import { exec } from "child_process";
+var __filename = fileURLToPath(import.meta.url);
+var __dirname = join(__filename, "..");
+var MIME_TYPES = {
+  ".html": "text/html",
+  ".js": "text/javascript",
+  ".css": "text/css",
+  ".json": "application/json",
+  ".svg": "image/svg+xml",
+  ".png": "image/png",
+  ".ico": "image/x-icon",
+  ".woff": "font/woff",
+  ".woff2": "font/woff2"
+};
+function startDashboard(port = 3e3) {
+  const dashboardDir = join(__dirname, "../../dashboard/dist");
+  if (!existsSync(dashboardDir)) {
+    console.error(
+      `Dashboard not built. Run "npm run build:dashboard" first.
+Expected: ${dashboardDir}`
+    );
+    process.exit(1);
+  }
+  const dataSource = join(
+    process.env.HOME || process.env.USERPROFILE || "~",
+    ".aws-security/dashboard/data.json"
+  );
+  const dataDest = join(dashboardDir, "data.json");
+  if (existsSync(dataSource)) {
+    copyFileSync(dataSource, dataDest);
+    console.log(`Loaded scan data from ${dataSource}`);
+  } else {
+    console.log(
+      "No scan data found at ~/.aws-security/dashboard/data.json \u2014 using bundled sample data"
+    );
+  }
+  const resolvedBase = resolve(dashboardDir);
+  const server = createServer(async (req, res) => {
+    const url = req.url?.split("?")[0] ?? "/";
+    let filePath = resolve(
+      join(dashboardDir, url === "/" ? "index.html" : url)
+    );
+    if (!filePath.startsWith(resolvedBase + "/") && filePath !== resolvedBase) {
+      res.writeHead(403);
+      res.end("Forbidden");
+      return;
+    }
+    if (!existsSync(filePath)) {
+      filePath = join(dashboardDir, "index.html");
+    }
+    try {
+      const content = await readFile(filePath);
+      const ext = extname(filePath);
+      res.writeHead(200, {
+        "Content-Type": MIME_TYPES[ext] || "application/octet-stream"
+      });
+      res.end(content);
+    } catch {
+      res.writeHead(404);
+      res.end("Not found");
+    }
+  });
+  server.listen(port, () => {
+    const url = `http://localhost:${port}`;
+    console.log(`
+AWS Security Dashboard: ${url}
+`);
+    console.log("Press Ctrl+C to stop.\n");
+    const cmd = process.platform === "darwin" ? "open" : process.platform === "win32" ? "start" : "xdg-open";
+    exec(`${cmd} ${url}`, () => {
+    });
+  });
+  server.on("error", (err) => {
+    if (err.code === "EADDRINUSE") {
+      console.error(`Port ${port} is already in use. Try --port <other>`);
+      process.exit(1);
+    }
+    throw err;
+  });
+}
+export {
+  startDashboard
+};
+//# sourceMappingURL=dashboard.js.map

package/dist/src/commands/dashboard.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../../../src/commands/dashboard.ts"],"sourcesContent":["import { createServer } from \"node:http\";\nimport { readFile } from \"node:fs/promises\";\nimport { join, extname, resolve, normalize } from \"node:path\";\nimport { existsSync, copyFileSync } from \"node:fs\";\nimport { fileURLToPath } from \"node:url\";\nimport { exec } from \"node:child_process\";\n\nconst __filename = fileURLToPath(import.meta.url);\nconst __dirname = join(__filename, \"..\");\n\nconst MIME_TYPES: Record<string, string> = {\n  \".html\": \"text/html\",\n  \".js\": \"text/javascript\",\n  \".css\": \"text/css\",\n  \".json\": \"application/json\",\n  \".svg\": \"image/svg+xml\",\n  \".png\": \"image/png\",\n  \".ico\": \"image/x-icon\",\n  \".woff\": \"font/woff\",\n  \".woff2\": \"font/woff2\",\n};\n\nexport function startDashboard(port = 3000): void {\n  // dashboard/dist is two levels up from dist/src/commands/\n  const dashboardDir = join(__dirname, \"../../dashboard/dist\");\n\n  if (!existsSync(dashboardDir)) {\n    console.error(\n      `Dashboard not built. Run \"npm run build:dashboard\" first.\\n` +\n        `Expected: ${dashboardDir}`,\n    );\n    process.exit(1);\n  }\n\n  // Copy real data.json if available\n  const dataSource = join(\n    process.env.HOME || process.env.USERPROFILE || \"~\",\n    \".aws-security/dashboard/data.json\",\n  );\n  const dataDest = join(dashboardDir, \"data.json\");\n  if (existsSync(dataSource)) {\n    copyFileSync(dataSource, dataDest);\n    console.log(`Loaded scan data from ${dataSource}`);\n  } else {\n    console.log(\n      \"No scan data found at ~/.aws-security/dashboard/data.json — using bundled sample data\",\n    );\n  }\n\n  const resolvedBase = resolve(dashboardDir);\n\n  const server = createServer(async (req, res) => {\n    const url = req.url?.split(\"?\")[0] ?? \"/\";\n    let filePath = resolve(\n      join(dashboardDir, url === \"/\" ? \"index.html\" : url),\n    );\n\n    // Ensure the resolved path is within dashboardDir\n    if (!filePath.startsWith(resolvedBase + \"/\") && filePath !== resolvedBase) {\n      res.writeHead(403);\n      res.end(\"Forbidden\");\n      return;\n    }\n\n    // SPA fallback: if file doesn't exist and isn't a static asset, serve index.html\n    if (!existsSync(filePath)) {\n      filePath = join(dashboardDir, \"index.html\");\n    }\n\n    try {\n      const content = await readFile(filePath);\n      const ext = extname(filePath);\n      res.writeHead(200, {\n        \"Content-Type\": MIME_TYPES[ext] || \"application/octet-stream\",\n      });\n      res.end(content);\n    } catch {\n      res.writeHead(404);\n      res.end(\"Not found\");\n    }\n  });\n\n  server.listen(port, () => {\n    const url = `http://localhost:${port}`;\n    console.log(`\\nAWS Security Dashboard: ${url}\\n`);\n    console.log(\"Press Ctrl+C to stop.\\n\");\n\n    // Try to open browser\n    const cmd =\n      process.platform === \"darwin\"\n        ? \"open\"\n        : process.platform === \"win32\"\n          ? \"start\"\n          : \"xdg-open\";\n    exec(`${cmd} ${url}`, () => {\n      // ignore errors — browser open is best-effort\n    });\n  });\n\n  server.on(\"error\", (err: NodeJS.ErrnoException) => {\n    if (err.code === \"EADDRINUSE\") {\n      console.error(`Port ${port} is already in use. Try --port <other>`);\n      process.exit(1);\n    }\n    throw err;\n  });\n}\n"],"mappings":";AAAA,SAAS,oBAAoB;AAC7B,SAAS,gBAAgB;AACzB,SAAS,MAAM,SAAS,eAA0B;AAClD,SAAS,YAAY,oBAAoB;AACzC,SAAS,qBAAqB;AAC9B,SAAS,YAAY;AAErB,IAAM,aAAa,cAAc,YAAY,GAAG;AAChD,IAAM,YAAY,KAAK,YAAY,IAAI;AAEvC,IAAM,aAAqC;AAAA,EACzC,SAAS;AAAA,EACT,OAAO;AAAA,EACP,QAAQ;AAAA,EACR,SAAS;AAAA,EACT,QAAQ;AAAA,EACR,QAAQ;AAAA,EACR,QAAQ;AAAA,EACR,SAAS;AAAA,EACT,UAAU;AACZ;AAEO,SAAS,eAAe,OAAO,KAAY;AAEhD,QAAM,eAAe,KAAK,WAAW,sBAAsB;AAE3D,MAAI,CAAC,WAAW,YAAY,GAAG;AAC7B,YAAQ;AAAA,MACN;AAAA,YACe,YAAY;AAAA,IAC7B;AACA,YAAQ,KAAK,CAAC;AAAA,EAChB;AAGA,QAAM,aAAa;AAAA,IACjB,QAAQ,IAAI,QAAQ,QAAQ,IAAI,eAAe;AAAA,IAC/C;AAAA,EACF;AACA,QAAM,WAAW,KAAK,cAAc,WAAW;AAC/C,MAAI,WAAW,UAAU,GAAG;AAC1B,iBAAa,YAAY,QAAQ;AACjC,YAAQ,IAAI,yBAAyB,UAAU,EAAE;AAAA,EACnD,OAAO;AACL,YAAQ;AAAA,MACN;AAAA,IACF;AAAA,EACF;AAEA,QAAM,eAAe,QAAQ,YAAY;AAEzC,QAAM,SAAS,aAAa,OAAO,KAAK,QAAQ;AAC9C,UAAM,MAAM,IAAI,KAAK,MAAM,GAAG,EAAE,CAAC,KAAK;AACtC,QAAI,WAAW;AAAA,MACb,KAAK,cAAc,QAAQ,MAAM,eAAe,GAAG;AAAA,IACrD;AAGA,QAAI,CAAC,SAAS,WAAW,eAAe,GAAG,KAAK,aAAa,cAAc;AACzE,UAAI,UAAU,GAAG;AACjB,UAAI,IAAI,WAAW;AACnB;AAAA,IACF;AAGA,QAAI,CAAC,WAAW,QAAQ,GAAG;AACzB,iBAAW,KAAK,cAAc,YAAY;AAAA,IAC5C;AAEA,QAAI;AACF,YAAM,UAAU,MAAM,SAAS,QAAQ;AACvC,YAAM,MAAM,QAAQ,QAAQ;AAC5B,UAAI,UAAU,KAAK;AAAA,QACjB,gBAAgB,WAAW,GAAG,KAAK;AAAA,MACrC,CAAC;AACD,UAAI,IAAI,OAAO;AAAA,IACjB,QAAQ;AACN,UAAI,UAAU,GAAG;AACjB,UAAI,IAAI,WAAW;AAAA,IACrB;AAAA,EACF,CAAC;AAED,SAAO,OAAO,MAAM,MAAM;AACxB,UAAM,MAAM,oBAAoB,IAAI;AACpC,YAAQ,IAAI;AAAA,0BAA6B,GAAG;AAAA,CAAI;AAChD,YAAQ,IAAI,yBAAyB;AAGrC,UAAM,MACJ,QAAQ,aAAa,WACjB,SACA,QAAQ,aAAa,UACnB,UACA;AACR,SAAK,GAAG,GAAG,IAAI,GAAG,IAAI,MAAM;AAAA,IAE5B,CAAC;AAAA,EACH,CAAC;AAED,SAAO,GAAG,SAAS,CAAC,QAA+B;AACjD,QAAI,IAAI,SAAS,cAAc;AAC7B,cAAQ,MAAM,QAAQ,IAAI,wCAAwC;AAClE,cAAQ,KAAK,CAAC;AAAA,IAChB;AACA,UAAM;AAAA,EACR,CAAC;AACH;","names":[]}

package/dist/src/commands/deploy-dashboard.d.ts

@@ -0,0 +1,3 @@
+declare function deployDashboard(bucket: string, region: string): Promise<void>;
+
+export { deployDashboard };

package/dist/src/commands/deploy-dashboard.js

@@ -0,0 +1,117 @@
+// src/commands/deploy-dashboard.ts
+import { readdirSync, readFileSync, existsSync, copyFileSync } from "fs";
+import { join, extname, relative } from "path";
+import { fileURLToPath } from "url";
+import {
+  S3Client,
+  PutObjectCommand,
+  PutBucketWebsiteCommand,
+  PutBucketPolicyCommand
+} from "@aws-sdk/client-s3";
+var __filename = fileURLToPath(import.meta.url);
+var __dirname = join(__filename, "..");
+var CONTENT_TYPES = {
+  ".html": "text/html",
+  ".js": "text/javascript",
+  ".css": "text/css",
+  ".json": "application/json",
+  ".svg": "image/svg+xml",
+  ".png": "image/png",
+  ".ico": "image/x-icon",
+  ".woff": "font/woff",
+  ".woff2": "font/woff2"
+};
+function collectFiles(dir) {
+  const files = [];
+  for (const entry of readdirSync(dir, { withFileTypes: true })) {
+    const full = join(dir, entry.name);
+    if (entry.isDirectory()) {
+      files.push(...collectFiles(full));
+    } else {
+      files.push(full);
+    }
+  }
+  return files;
+}
+async function deployDashboard(bucket, region) {
+  const dashboardDir = join(__dirname, "../../dashboard/dist");
+  if (!existsSync(dashboardDir)) {
+    console.error(
+      `Dashboard not built. Run "npm run build:dashboard" first.
+Expected: ${dashboardDir}`
+    );
+    process.exit(1);
+  }
+  const dataSource = join(
+    process.env.HOME || process.env.USERPROFILE || "~",
+    ".aws-security/dashboard/data.json"
+  );
+  const dataDest = join(dashboardDir, "data.json");
+  if (existsSync(dataSource)) {
+    copyFileSync(dataSource, dataDest);
+    console.log(`Loaded scan data from ${dataSource}`);
+  } else {
+    console.log(
+      "No scan data at ~/.aws-security/dashboard/data.json \u2014 deploying with bundled sample data"
+    );
+  }
+  const s3 = new S3Client({ region });
+  console.log(`Configuring s3://${bucket} for static website hosting...`);
+  await s3.send(
+    new PutBucketWebsiteCommand({
+      Bucket: bucket,
+      WebsiteConfiguration: {
+        IndexDocument: { Suffix: "index.html" },
+        ErrorDocument: { Key: "index.html" }
+        // SPA fallback
+      }
+    })
+  );
+  const partition = region.startsWith("cn-") ? "aws-cn" : "aws";
+  console.log(`Setting public read bucket policy on s3://${bucket}...`);
+  await s3.send(
+    new PutBucketPolicyCommand({
+      Bucket: bucket,
+      Policy: JSON.stringify({
+        Version: "2012-10-17",
+        Statement: [
+          {
+            Sid: "PublicReadGetObject",
+            Effect: "Allow",
+            Principal: "*",
+            Action: "s3:GetObject",
+            Resource: `arn:${partition}:s3:::${bucket}/*`
+          }
+        ]
+      })
+    })
+  );
+  const files = collectFiles(dashboardDir);
+  console.log(`Uploading ${files.length} files to s3://${bucket}...`);
+  for (const filePath of files) {
+    const key = relative(dashboardDir, filePath);
+    const ext = extname(filePath);
+    const contentType = CONTENT_TYPES[ext] || "application/octet-stream";
+    const body = readFileSync(filePath);
+    await s3.send(
+      new PutObjectCommand({
+        Bucket: bucket,
+        Key: key,
+        Body: body,
+        ContentType: contentType
+      })
+    );
+    console.log(`  ${key}`);
+  }
+  const websiteUrl = `http://${bucket}.s3-website-${region}.amazonaws.com`;
+  console.log(`
+Dashboard deployed successfully!`);
+  console.log(`Website URL: ${websiteUrl}`);
+  console.log(
+    "\nNote: Ensure S3 Block Public Access is disabled on this bucket for the website to be accessible.\n"
+  );
+}
+export {
+  deployDashboard
+};
+//# sourceMappingURL=deploy-dashboard.js.map

package/dist/src/commands/deploy-dashboard.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../../../src/commands/deploy-dashboard.ts"],"sourcesContent":["import { readdirSync, readFileSync, statSync, existsSync, copyFileSync } from \"node:fs\";\nimport { join, extname, relative } from \"node:path\";\nimport { fileURLToPath } from \"node:url\";\nimport {\n  S3Client,\n  PutObjectCommand,\n  PutBucketWebsiteCommand,\n  PutBucketPolicyCommand,\n} from \"@aws-sdk/client-s3\";\n\nconst __filename = fileURLToPath(import.meta.url);\nconst __dirname = join(__filename, \"..\");\n\nconst CONTENT_TYPES: Record<string, string> = {\n  \".html\": \"text/html\",\n  \".js\": \"text/javascript\",\n  \".css\": \"text/css\",\n  \".json\": \"application/json\",\n  \".svg\": \"image/svg+xml\",\n  \".png\": \"image/png\",\n  \".ico\": \"image/x-icon\",\n  \".woff\": \"font/woff\",\n  \".woff2\": \"font/woff2\",\n};\n\nfunction collectFiles(dir: string): string[] {\n  const files: string[] = [];\n  for (const entry of readdirSync(dir, { withFileTypes: true })) {\n    const full = join(dir, entry.name);\n    if (entry.isDirectory()) {\n      files.push(...collectFiles(full));\n    } else {\n      files.push(full);\n    }\n  }\n  return files;\n}\n\nexport async function deployDashboard(\n  bucket: string,\n  region: string,\n): Promise<void> {\n  const dashboardDir = join(__dirname, \"../../dashboard/dist\");\n\n  if (!existsSync(dashboardDir)) {\n    console.error(\n      `Dashboard not built. Run \"npm run build:dashboard\" first.\\n` +\n        `Expected: ${dashboardDir}`,\n    );\n    process.exit(1);\n  }\n\n  // Copy real data.json if available\n  const dataSource = join(\n    process.env.HOME || process.env.USERPROFILE || \"~\",\n    \".aws-security/dashboard/data.json\",\n  );\n  const dataDest = join(dashboardDir, \"data.json\");\n  if (existsSync(dataSource)) {\n    copyFileSync(dataSource, dataDest);\n    console.log(`Loaded scan data from ${dataSource}`);\n  } else {\n    console.log(\n      \"No scan data at ~/.aws-security/dashboard/data.json — deploying with bundled sample data\",\n    );\n  }\n\n  const s3 = new S3Client({ region });\n\n  // Configure static website hosting\n  console.log(`Configuring s3://${bucket} for static website hosting...`);\n  await s3.send(\n    new PutBucketWebsiteCommand({\n      Bucket: bucket,\n      WebsiteConfiguration: {\n        IndexDocument: { Suffix: \"index.html\" },\n        ErrorDocument: { Key: \"index.html\" }, // SPA fallback\n      },\n    }),\n  );\n\n  // Set bucket policy for public read access\n  const partition = region.startsWith(\"cn-\") ? \"aws-cn\" : \"aws\";\n  console.log(`Setting public read bucket policy on s3://${bucket}...`);\n  await s3.send(\n    new PutBucketPolicyCommand({\n      Bucket: bucket,\n      Policy: JSON.stringify({\n        Version: \"2012-10-17\",\n        Statement: [\n          {\n            Sid: \"PublicReadGetObject\",\n            Effect: \"Allow\",\n            Principal: \"*\",\n            Action: \"s3:GetObject\",\n            Resource: `arn:${partition}:s3:::${bucket}/*`,\n          },\n        ],\n      }),\n    }),\n  );\n\n  // Upload all files\n  const files = collectFiles(dashboardDir);\n  console.log(`Uploading ${files.length} files to s3://${bucket}...`);\n\n  for (const filePath of files) {\n    const key = relative(dashboardDir, filePath);\n    const ext = extname(filePath);\n    const contentType = CONTENT_TYPES[ext] || \"application/octet-stream\";\n    const body = readFileSync(filePath);\n\n    await s3.send(\n      new PutObjectCommand({\n        Bucket: bucket,\n        Key: key,\n        Body: body,\n        ContentType: contentType,\n      }),\n    );\n    console.log(`  ${key}`);\n  }\n\n  const websiteUrl = `http://${bucket}.s3-website-${region}.amazonaws.com`;\n  console.log(`\\nDashboard deployed successfully!`);\n  console.log(`Website URL: ${websiteUrl}`);\n  console.log(\n    \"\\nNote: Ensure S3 Block Public Access is disabled on this bucket for the website to be accessible.\\n\",\n  );\n}\n"],"mappings":";AAAA,SAAS,aAAa,cAAwB,YAAY,oBAAoB;AAC9E,SAAS,MAAM,SAAS,gBAAgB;AACxC,SAAS,qBAAqB;AAC9B;AAAA,EACE;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,OACK;AAEP,IAAM,aAAa,cAAc,YAAY,GAAG;AAChD,IAAM,YAAY,KAAK,YAAY,IAAI;AAEvC,IAAM,gBAAwC;AAAA,EAC5C,SAAS;AAAA,EACT,OAAO;AAAA,EACP,QAAQ;AAAA,EACR,SAAS;AAAA,EACT,QAAQ;AAAA,EACR,QAAQ;AAAA,EACR,QAAQ;AAAA,EACR,SAAS;AAAA,EACT,UAAU;AACZ;AAEA,SAAS,aAAa,KAAuB;AAC3C,QAAM,QAAkB,CAAC;AACzB,aAAW,SAAS,YAAY,KAAK,EAAE,eAAe,KAAK,CAAC,GAAG;AAC7D,UAAM,OAAO,KAAK,KAAK,MAAM,IAAI;AACjC,QAAI,MAAM,YAAY,GAAG;AACvB,YAAM,KAAK,GAAG,aAAa,IAAI,CAAC;AAAA,IAClC,OAAO;AACL,YAAM,KAAK,IAAI;AAAA,IACjB;AAAA,EACF;AACA,SAAO;AACT;AAEA,eAAsB,gBACpB,QACA,QACe;AACf,QAAM,eAAe,KAAK,WAAW,sBAAsB;AAE3D,MAAI,CAAC,WAAW,YAAY,GAAG;AAC7B,YAAQ;AAAA,MACN;AAAA,YACe,YAAY;AAAA,IAC7B;AACA,YAAQ,KAAK,CAAC;AAAA,EAChB;AAGA,QAAM,aAAa;AAAA,IACjB,QAAQ,IAAI,QAAQ,QAAQ,IAAI,eAAe;AAAA,IAC/C;AAAA,EACF;AACA,QAAM,WAAW,KAAK,cAAc,WAAW;AAC/C,MAAI,WAAW,UAAU,GAAG;AAC1B,iBAAa,YAAY,QAAQ;AACjC,YAAQ,IAAI,yBAAyB,UAAU,EAAE;AAAA,EACnD,OAAO;AACL,YAAQ;AAAA,MACN;AAAA,IACF;AAAA,EACF;AAEA,QAAM,KAAK,IAAI,SAAS,EAAE,OAAO,CAAC;AAGlC,UAAQ,IAAI,oBAAoB,MAAM,gCAAgC;AACtE,QAAM,GAAG;AAAA,IACP,IAAI,wBAAwB;AAAA,MAC1B,QAAQ;AAAA,MACR,sBAAsB;AAAA,QACpB,eAAe,EAAE,QAAQ,aAAa;AAAA,QACtC,eAAe,EAAE,KAAK,aAAa;AAAA;AAAA,MACrC;AAAA,IACF,CAAC;AAAA,EACH;AAGA,QAAM,YAAY,OAAO,WAAW,KAAK,IAAI,WAAW;AACxD,UAAQ,IAAI,6CAA6C,MAAM,KAAK;AACpE,QAAM,GAAG;AAAA,IACP,IAAI,uBAAuB;AAAA,MACzB,QAAQ;AAAA,MACR,QAAQ,KAAK,UAAU;AAAA,QACrB,SAAS;AAAA,QACT,WAAW;AAAA,UACT;AAAA,YACE,KAAK;AAAA,YACL,QAAQ;AAAA,YACR,WAAW;AAAA,YACX,QAAQ;AAAA,YACR,UAAU,OAAO,SAAS,SAAS,MAAM;AAAA,UAC3C;AAAA,QACF;AAAA,MACF,CAAC;AAAA,IACH,CAAC;AAAA,EACH;AAGA,QAAM,QAAQ,aAAa,YAAY;AACvC,UAAQ,IAAI,aAAa,MAAM,MAAM,kBAAkB,MAAM,KAAK;AAElE,aAAW,YAAY,OAAO;AAC5B,UAAM,MAAM,SAAS,cAAc,QAAQ;AAC3C,UAAM,MAAM,QAAQ,QAAQ;AAC5B,UAAM,cAAc,cAAc,GAAG,KAAK;AAC1C,UAAM,OAAO,aAAa,QAAQ;AAElC,UAAM,GAAG;AAAA,MACP,IAAI,iBAAiB;AAAA,QACnB,QAAQ;AAAA,QACR,KAAK;AAAA,QACL,MAAM;AAAA,QACN,aAAa;AAAA,MACf,CAAC;AAAA,IACH;AACA,YAAQ,IAAI,KAAK,GAAG,EAAE;AAAA,EACxB;AAEA,QAAM,aAAa,UAAU,MAAM,eAAe,MAAM;AACxD,UAAQ,IAAI;AAAA,iCAAoC;AAChD,UAAQ,IAAI,gBAAgB,UAAU,EAAE;AACxC,UAAQ;AAAA,IACN;AAAA,EACF;AACF;","names":[]}

package/dist/src/index.d.ts

@@ -0,0 +1,96 @@
+import { McpServer } from '@modelcontextprotocol/sdk/server/mcp.js';
+
+type Severity = "CRITICAL" | "HIGH" | "MEDIUM" | "LOW";
+type Priority = "P0" | "P1" | "P2" | "P3";
+interface Finding {
+    severity: Severity;
+    title: string;
+    resourceType: string;
+    resourceId: string;
+    resourceArn: string;
+    region: string;
+    description: string;
+    impact: string;
+    riskScore: number;
+    remediationSteps: string[];
+    priority: Priority;
+    module?: string;
+}
+interface ScanResult {
+    module: string;
+    status: "success" | "error";
+    error?: string;
+    warnings?: string[];
+    resourcesScanned: number;
+    findingsCount: number;
+    scanTimeMs: number;
+    findings: Finding[];
+}
+interface ScanContext {
+    region: string;
+    partition: string;
+    accountId: string;
+}
+interface FullScanResult {
+    scanStart: string;
+    scanEnd: string;
+    region: string;
+    accountId: string;
+    modules: ScanResult[];
+    summary: {
+        totalFindings: number;
+        critical: number;
+        high: number;
+        medium: number;
+        low: number;
+        modulesSuccess: number;
+        modulesError: number;
+    };
+}
+interface DashboardHistoryEntry {
+    date: string;
+    score: number;
+    critical: number;
+    high: number;
+    medium: number;
+    low: number;
+    totalFindings: number;
+}
+interface DashboardData {
+    lastScan: {
+        scanStart: string;
+        scanEnd: string;
+        region: string;
+        accountId: string;
+        summary: FullScanResult["summary"];
+        modules: Array<{
+            module: string;
+            findingsCount: number;
+            status: string;
+        }>;
+        findings: Finding[];
+    };
+    history: DashboardHistoryEntry[];
+    meta: {
+        generatedAt: string;
+        version: string;
+        dataRetentionDays: number;
+    };
+}
+
+interface Scanner {
+    readonly moduleName: string;
+    scan(ctx: ScanContext): Promise<ScanResult>;
+}
+
+declare function runAllScanners(scanners: Scanner[], region: string): Promise<FullScanResult>;
+
+declare function generateMarkdownReport(scanResults: FullScanResult): string;
+
+declare function calculateScore(summary: FullScanResult["summary"]): number;
+declare function saveResults(scanResults: FullScanResult, outputDir?: string): string;
+
+declare function createServer(defaultRegion: string): McpServer;
+declare function startServer(defaultRegion: string): Promise<void>;
+
+export { type DashboardData, type DashboardHistoryEntry, type Finding, type FullScanResult, type Priority, type ScanContext, type ScanResult, type Scanner, type Severity, calculateScore, createServer, generateMarkdownReport, runAllScanners, saveResults, startServer };