beddel 0.1.0

package/dist/security/monitor.js

@@ -0,0 +1,356 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.securityMonitor = exports.MetricsCollector = exports.AlertManager = exports.ThreatMLModel = exports.AnomalyDetector = exports.ThreatDetectionEngine = exports.SecurityMonitor = exports.AlertLevel = void 0;
+const events_1 = require("events");
+const auditTrail_1 = require("../audit/auditTrail");
+const config_1 = require("../config");
+var AlertLevel;
+(function (AlertLevel) {
+    AlertLevel["INFO"] = "info";
+    AlertLevel["WARNING"] = "warning";
+    AlertLevel["CRITICAL"] = "critical";
+    AlertLevel["EMERGENCY"] = "emergency";
+})(AlertLevel || (exports.AlertLevel = AlertLevel = {}));
+class SecurityMonitor extends events_1.EventEmitter {
+    constructor() {
+        super();
+        this.isMonitoring = false;
+        this.threatDetector = new ThreatDetectionEngine();
+        this.alertManager = new AlertManager();
+        this.metricsCollector = new MetricsCollector();
+        this.auditTrail = new auditTrail_1.AuditTrail();
+        this.securityConfig = {
+            alertThreshold: config_1.runtimeConfig.securityScore >= 9.5 ? 0.7 : 0.6,
+        };
+    }
+    static getInstance() {
+        if (!SecurityMonitor.instance) {
+            SecurityMonitor.instance = new SecurityMonitor();
+        }
+        return SecurityMonitor.instance;
+    }
+    startMonitoring() {
+        if (this.isMonitoring) {
+            return;
+        }
+        this.isMonitoring = true;
+        this.emit("monitoringStarted", { timestamp: new Date() });
+        this.logEvent("system", "monitoring_started", { version: "2025.1.0" });
+    }
+    stopMonitoring() {
+        if (!this.isMonitoring) {
+            return;
+        }
+        this.isMonitoring = false;
+        this.emit("monitoringStopped", { timestamp: new Date() });
+        this.logEvent("system", "monitoring_stopped", { reason: "manual" });
+    }
+    isMonitoringActive() {
+        return this.isMonitoring;
+    }
+    async monitorActivity(tenantId, operation, metadata) {
+        if (!this.isMonitoring) {
+            throw new Error("Security monitoring is not active");
+        }
+        const eventId = this.generateEventId();
+        const timestamp = new Date();
+        // Perform threat analysis
+        const threatAnalysis = await this.threatDetector.analyze(tenantId, operation, metadata);
+        const securityEvent = {
+            id: eventId,
+            tenantId,
+            operation,
+            metadata,
+            timestamp,
+            riskScore: threatAnalysis.riskScore,
+            alertLevel: this.determineAlertLevel(threatAnalysis.riskScore),
+        };
+        // Log to audit trail
+        await this.logSecurityEvent(securityEvent);
+        // Check if alert needs to be triggered
+        if (securityEvent.riskScore > this.securityConfig.alertThreshold) {
+            await this.triggerSecurityAlert(securityEvent);
+        }
+        // Emit event for real-time dashboards
+        this.emit("securityEvent", securityEvent);
+        this.metricsCollector.recordEvent(securityEvent);
+        return securityEvent;
+    }
+    generateEventId() {
+        return `sec-${Date.now()}-${Math.random().toString(36).substr(2, 9)}`;
+    }
+    determineAlertLevel(riskScore) {
+        if (riskScore >= 0.9)
+            return AlertLevel.EMERGENCY;
+        if (riskScore >= 0.7)
+            return AlertLevel.CRITICAL;
+        if (riskScore >= 0.4)
+            return AlertLevel.WARNING;
+        return AlertLevel.INFO;
+    }
+    async logSecurityEvent(event) {
+        await this.auditTrail.logOperation({
+            operationId: event.id,
+            tenantId: event.tenantId,
+            operation: `security_${event.operation}`,
+            data: {
+                metadata: event.metadata,
+                riskScore: event.riskScore,
+                alertLevel: event.alertLevel,
+            },
+            timestamp: event.timestamp,
+            success: true,
+        });
+    }
+    async triggerSecurityAlert(event) {
+        await this.alertManager.sendAlert(event);
+        this.emit("securityAlert", event);
+    }
+    async logEvent(tenantId, operation, metadata, riskScore = 0.1) {
+        return this.monitorActivity(tenantId, operation, metadata);
+    }
+    getMetrics() {
+        return this.metricsCollector.getMetrics();
+    }
+    getThreatStatistics() {
+        return this.threatDetector.getStatistics();
+    }
+}
+exports.SecurityMonitor = SecurityMonitor;
+// Supporting Classes
+class ThreatDetectionEngine {
+    constructor() {
+        this.patterns = new Map();
+        this.initializePatterns();
+        this.anomalyDetector = new AnomalyDetector();
+        this.mlModel = new ThreatMLModel();
+    }
+    initializePatterns() {
+        this.patterns.set("brute_force", /multiple_failed_attempts|rapid_login_sequence/i);
+        this.patterns.set("sql_injection", /union.*select|drop.*table|exec.*\(.*\)/i);
+        this.patterns.set("data_exfiltration", /bulk.*export|mass.*download|unusual.*access/i);
+        this.patterns.set("cross_tenant", /cross.*tenant|tenant.*injection|unauthorized.*access/i);
+        this.patterns.set("lgpd_violation", /unauthorized.*data|consent.*violation|retention.*breach/i);
+    }
+    async analyze(tenantId, operation, metadata) {
+        let riskScore = 0.1; // Base risk
+        let threatType = "low_risk";
+        let confidence = 0.9;
+        // Pattern matching
+        for (const [patternName, pattern] of this.patterns) {
+            if (pattern.test(operation) || pattern.test(JSON.stringify(metadata))) {
+                riskScore += patternName === "emergency" ? 0.8 : 0.4;
+                threatType = patternName;
+                break;
+            }
+        }
+        // Anomaly detection
+        const anomalyScore = await this.anomalyDetector.detectAnomaly(tenantId, operation, metadata);
+        riskScore += anomalyScore * 0.3;
+        // ML model prediction
+        const mlScore = await this.mlModel.predict(tenantId, operation, metadata);
+        riskScore += mlScore * 0.2;
+        // Cap risk score at 1.0
+        riskScore = Math.min(riskScore, 1.0);
+        const recommendations = this.generateRecommendations(riskScore, threatType);
+        return {
+            riskScore,
+            threatType,
+            confidence,
+            recommendations,
+        };
+    }
+    generateRecommendations(riskScore, threatType) {
+        const recommendations = [];
+        if (riskScore > 0.7) {
+            recommendations.push("Immediate investigation required");
+            recommendations.push("Consider tenant isolation");
+            recommendations.push("Notify security team");
+        }
+        else if (riskScore > 0.4) {
+            recommendations.push("Monitor closely");
+            recommendations.push("Check access logs");
+            recommendations.push("Review permissions");
+        }
+        else {
+            recommendations.push("Routine monitoring");
+            recommendations.push("Document pattern");
+        }
+        return recommendations;
+    }
+    getStatistics() {
+        return {
+            patternsLoaded: this.patterns.size,
+            lastUpdate: new Date().toISOString(),
+            mlModelVersion: "2025.1.0",
+        };
+    }
+}
+exports.ThreatDetectionEngine = ThreatDetectionEngine;
+class AnomalyDetector {
+    constructor() {
+        this.normalPatterns = new Map();
+        this.anomalyThreshold = 2.5;
+    }
+    async detectAnomaly(tenantId, operation, metadata) {
+        const key = `${tenantId}:${operation}`;
+        const currentTime = new Date().getTime();
+        if (!this.normalPatterns.has(key)) {
+            this.normalPatterns.set(key, []);
+        }
+        const patterns = this.normalPatterns.get(key);
+        // Simple time-based anomaly detection
+        if (patterns.length > 10) {
+            const timeInterval = currentTime - patterns[patterns.length - 1].timestamp;
+            // Check if current operation is happening too frequently
+            if (timeInterval < 1000) {
+                // Less than 1 second
+                return 0.6; // High anomaly score
+            }
+            // Check for unusual velocity
+            const intervals = [];
+            for (let i = 1; i < patterns.length; i++) {
+                intervals.push(patterns[i].timestamp - patterns[i - 1].timestamp);
+            }
+            const avgInterval = intervals.reduce((a, b) => a + b, 0) / intervals.length;
+            const currentDeviation = Math.abs(timeInterval - avgInterval) / avgInterval;
+            if (currentDeviation > this.anomalyThreshold) {
+                return 0.4;
+            }
+        }
+        // Store current pattern
+        patterns.push({
+            timestamp: currentTime,
+            metadata: metadata,
+        });
+        // Keep only recent patterns (last 24 hours)
+        const cutoff = currentTime - 24 * 60 * 60 * 1000;
+        this.normalPatterns.set(key, patterns.filter((p) => p.timestamp > cutoff));
+        return 0.0; // Normal behavior
+    }
+}
+exports.AnomalyDetector = AnomalyDetector;
+class ThreatMLModel {
+    constructor() {
+        this.modelWeights = new Map();
+        this.initializeModel();
+    }
+    initializeModel() {
+        // Simplified ML model weights
+        this.modelWeights.set("tenant_historical_access", 0.3);
+        this.modelWeights.set("operation_frequency", 0.4);
+        this.modelWeights.set("metadata_complexity", 0.2);
+        this.modelWeights.set("time_based_anomaly", 0.1);
+    }
+    async predict(tenantId, operation, metadata) {
+        // Simplified ML prediction
+        let score = 0.0;
+        // Higher risk for operations outside business hours
+        const hour = new Date().getHours();
+        if (hour < 6 || hour > 22) {
+            score += 0.3;
+        }
+        // Higher risk for complex metadata
+        if (JSON.stringify(metadata).length > 1000) {
+            score += 0.2;
+        }
+        // Higher risk for bulk operations
+        if (operation.includes("bulk") || operation.includes("mass")) {
+            score += 0.4;
+        }
+        // Higher risk for cross-tenant operations
+        if (operation.includes("cross") || operation.includes("tenant")) {
+            score += 0.5;
+        }
+        return Math.min(score, 0.8);
+    }
+}
+exports.ThreatMLModel = ThreatMLModel;
+class AlertManager {
+    constructor() {
+        this.alertHistory = new Map();
+        this.MAX_ALERTS_PER_TENANT = 100;
+    }
+    async sendAlert(event) {
+        const key = event.tenantId;
+        if (!this.alertHistory.has(key)) {
+            this.alertHistory.set(key, []);
+        }
+        const alerts = this.alertHistory.get(key);
+        alerts.push(event);
+        // Keep only recent alerts
+        if (alerts.length > this.MAX_ALERTS_PER_TENANT) {
+            alerts.shift();
+        }
+        // Log the alert
+        console.warn(`[SECURITY_ALERT] Tenant: ${event.tenantId}, Risk: ${event.riskScore}, Operation: ${event.operation}`);
+    }
+    getAlertHistory(tenantId) {
+        return this.alertHistory.get(tenantId) || [];
+    }
+    getAlertSummary() {
+        const summary = {};
+        for (const [tenantId, alerts] of this.alertHistory) {
+            summary[tenantId] = {
+                totalAlerts: alerts.length,
+                criticalAlerts: alerts.filter((a) => a.riskScore > 0.7).length,
+                lastAlert: alerts[alerts.length - 1]?.timestamp,
+            };
+        }
+        return summary;
+    }
+}
+exports.AlertManager = AlertManager;
+class MetricsCollector {
+    constructor() {
+        this.metrics = {
+            totalEvents: 0,
+            totalAlerts: 0,
+            alertsByLevel: {
+                info: 0,
+                warning: 0,
+                critical: 0,
+                emergency: 0,
+            },
+            averageRiskScore: 0,
+            lastUpdate: null,
+        };
+    }
+    recordEvent(event) {
+        this.metrics.totalEvents++;
+        this.metrics.totalAlerts += event.riskScore > 0.7 ? 1 : 0;
+        this.metrics.alertsByLevel[event.alertLevel]++;
+        // Update average risk score
+        this.metrics.averageRiskScore =
+            (this.metrics.averageRiskScore * (this.metrics.totalEvents - 1) +
+                event.riskScore) /
+                this.metrics.totalEvents;
+        this.metrics.lastUpdate = new Date().toISOString();
+    }
+    getMetrics() {
+        return {
+            ...this.metrics,
+            alertRate: this.metrics.totalEvents > 0
+                ? this.metrics.totalAlerts / this.metrics.totalEvents
+                : 0,
+        };
+    }
+    resetMetrics() {
+        this.metrics = {
+            totalEvents: 0,
+            totalAlerts: 0,
+            alertsByLevel: {
+                info: 0,
+                warning: 0,
+                critical: 0,
+                emergency: 0,
+            },
+            averageRiskScore: 0,
+            lastUpdate: null,
+        };
+    }
+}
+exports.MetricsCollector = MetricsCollector;
+// Export singleton instance
+exports.securityMonitor = SecurityMonitor.getInstance();
+//# sourceMappingURL=monitor.js.map

package/dist/security/monitor.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"monitor.js","sourceRoot":"","sources":["../../src/security/monitor.ts"],"names":[],"mappings":";;;AAAA,mCAAsC;AACtC,oDAAiD;AACjD,sCAA0C;AAY1C,IAAY,UAKX;AALD,WAAY,UAAU;IACpB,2BAAa,CAAA;IACb,iCAAmB,CAAA;IACnB,mCAAqB,CAAA;IACrB,qCAAuB,CAAA;AACzB,CAAC,EALW,UAAU,0BAAV,UAAU,QAKrB;AASD,MAAa,eAAgB,SAAQ,qBAAY;IAS/C;QACE,KAAK,EAAE,CAAC;QALF,iBAAY,GAAY,KAAK,CAAC;QAMpC,IAAI,CAAC,cAAc,GAAG,IAAI,qBAAqB,EAAE,CAAC;QAClD,IAAI,CAAC,YAAY,GAAG,IAAI,YAAY,EAAE,CAAC;QACvC,IAAI,CAAC,gBAAgB,GAAG,IAAI,gBAAgB,EAAE,CAAC;QAC/C,IAAI,CAAC,UAAU,GAAG,IAAI,uBAAU,EAAE,CAAC;QACnC,IAAI,CAAC,cAAc,GAAG;YACpB,cAAc,EAAE,sBAAa,CAAC,aAAa,IAAI,GAAG,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,GAAG;SAC/D,CAAC;IACJ,CAAC;IAED,MAAM,CAAC,WAAW;QAChB,IAAI,CAAC,eAAe,CAAC,QAAQ,EAAE,CAAC;YAC9B,eAAe,CAAC,QAAQ,GAAG,IAAI,eAAe,EAAE,CAAC;QACnD,CAAC;QACD,OAAO,eAAe,CAAC,QAAQ,CAAC;IAClC,CAAC;IAEM,eAAe;QACpB,IAAI,IAAI,CAAC,YAAY,EAAE,CAAC;YACtB,OAAO;QACT,CAAC;QAED,IAAI,CAAC,YAAY,GAAG,IAAI,CAAC;QACzB,IAAI,CAAC,IAAI,CAAC,mBAAmB,EAAE,EAAE,SAAS,EAAE,IAAI,IAAI,EAAE,EAAE,CAAC,CAAC;QAC1D,IAAI,CAAC,QAAQ,CAAC,QAAQ,EAAE,oBAAoB,EAAE,EAAE,OAAO,EAAE,UAAU,EAAE,CAAC,CAAC;IACzE,CAAC;IAEM,cAAc;QACnB,IAAI,CAAC,IAAI,CAAC,YAAY,EAAE,CAAC;YACvB,OAAO;QACT,CAAC;QAED,IAAI,CAAC,YAAY,GAAG,KAAK,CAAC;QAC1B,IAAI,CAAC,IAAI,CAAC,mBAAmB,EAAE,EAAE,SAAS,EAAE,IAAI,IAAI,EAAE,EAAE,CAAC,CAAC;QAC1D,IAAI,CAAC,QAAQ,CAAC,QAAQ,EAAE,oBAAoB,EAAE,EAAE,MAAM,EAAE,QAAQ,EAAE,CAAC,CAAC;IACtE,CAAC;IAEM,kBAAkB;QACvB,OAAO,IAAI,CAAC,YAAY,CAAC;IAC3B,CAAC;IAEM,KAAK,CAAC,eAAe,CAC1B,QAAgB,EAChB,SAAiB,EACjB,QAAa;QAEb,IAAI,CAAC,IAAI,CAAC,YAAY,EAAE,CAAC;YACvB,MAAM,IAAI,KAAK,CAAC,mCAAmC,CAAC,CAAC;QACvD,CAAC;QAED,MAAM,OAAO,GAAG,IAAI,CAAC,eAAe,EAAE,CAAC;QACvC,MAAM,SAAS,GAAG,IAAI,IAAI,EAAE,CAAC;QAE7B,0BAA0B;QAC1B,MAAM,cAAc,GAAG,MAAM,IAAI,CAAC,cAAc,CAAC,OAAO,CACtD,QAAQ,EACR,SAAS,EACT,QAAQ,CACT,CAAC;QAEF,MAAM,aAAa,GAAkB;YACnC,EAAE,EAAE,OAAO;YACX,QAAQ;YACR,SAAS;YACT,QAAQ;YACR,SAAS;YACT,SAAS,EAAE,cAAc,CAAC,SAAS;YACnC,UAAU,EAAE,IAAI,CAAC,mBAAmB,CAAC,cAAc,CAAC,SAAS,CAAC;SAC/D,CAAC;QAEF,qBAAqB;QACrB,MAAM,IAAI,CAAC,gBAAgB,CAAC,aAAa,CAAC,CAAC;QAE3C,uCAAuC;QACvC,IAAI,aAAa,CAAC,SAAS,GAAG,IAAI,CAAC,cAAc,CAAC,cAAc,EAAE,CAAC;YACjE,MAAM,IAAI,CAAC,oBAAoB,CAAC,aAAa,CAAC,CAAC;QACjD,CAAC;QAED,sCAAsC;QACtC,IAAI,CAAC,IAAI,CAAC,eAAe,EAAE,aAAa,CAAC,CAAC;QAC1C,IAAI,CAAC,gBAAgB,CAAC,WAAW,CAAC,aAAa,CAAC,CAAC;QAEjD,OAAO,aAAa,CAAC;IACvB,CAAC;IAEO,eAAe;QACrB,OAAO,OAAO,IAAI,CAAC,GAAG,EAAE,IAAI,IAAI,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC,MAAM,CAAC,CAAC,EAAE,CAAC,CAAC,EAAE,CAAC;IACxE,CAAC;IAEO,mBAAmB,CAAC,SAAiB;QAC3C,IAAI,SAAS,IAAI,GAAG;YAAE,OAAO,UAAU,CAAC,SAAS,CAAC;QAClD,IAAI,SAAS,IAAI,GAAG;YAAE,OAAO,UAAU,CAAC,QAAQ,CAAC;QACjD,IAAI,SAAS,IAAI,GAAG;YAAE,OAAO,UAAU,CAAC,OAAO,CAAC;QAChD,OAAO,UAAU,CAAC,IAAI,CAAC;IACzB,CAAC;IAEO,KAAK,CAAC,gBAAgB,CAAC,KAAoB;QACjD,MAAM,IAAI,CAAC,UAAU,CAAC,YAAY,CAAC;YACjC,WAAW,EAAE,KAAK,CAAC,EAAE;YACrB,QAAQ,EAAE,KAAK,CAAC,QAAQ;YACxB,SAAS,EAAE,YAAY,KAAK,CAAC,SAAS,EAAE;YACxC,IAAI,EAAE;gBACJ,QAAQ,EAAE,KAAK,CAAC,QAAQ;gBACxB,SAAS,EAAE,KAAK,CAAC,SAAS;gBAC1B,UAAU,EAAE,KAAK,CAAC,UAAU;aAC7B;YACD,SAAS,EAAE,KAAK,CAAC,SAAS;YAC1B,OAAO,EAAE,IAAI;SACd,CAAC,CAAC;IACL,CAAC;IAEO,KAAK,CAAC,oBAAoB,CAAC,KAAoB;QACrD,MAAM,IAAI,CAAC,YAAY,CAAC,SAAS,CAAC,KAAK,CAAC,CAAC;QACzC,IAAI,CAAC,IAAI,CAAC,eAAe,EAAE,KAAK,CAAC,CAAC;IACpC,CAAC;IAEM,KAAK,CAAC,QAAQ,CACnB,QAAgB,EAChB,SAAiB,EACjB,QAAa,EACb,YAAoB,GAAG;QAEvB,OAAO,IAAI,CAAC,eAAe,CAAC,QAAQ,EAAE,SAAS,EAAE,QAAQ,CAAC,CAAC;IAC7D,CAAC;IAEM,UAAU;QACf,OAAO,IAAI,CAAC,gBAAgB,CAAC,UAAU,EAAE,CAAC;IAC5C,CAAC;IAEM,mBAAmB;QACxB,OAAO,IAAI,CAAC,cAAc,CAAC,aAAa,EAAE,CAAC;IAC7C,CAAC;CACF;AA9ID,0CA8IC;AAED,qBAAqB;AAErB,MAAa,qBAAqB;IAKhC;QAJQ,aAAQ,GAAwB,IAAI,GAAG,EAAE,CAAC;QAKhD,IAAI,CAAC,kBAAkB,EAAE,CAAC;QAC1B,IAAI,CAAC,eAAe,GAAG,IAAI,eAAe,EAAE,CAAC;QAC7C,IAAI,CAAC,OAAO,GAAG,IAAI,aAAa,EAAE,CAAC;IACrC,CAAC;IAEO,kBAAkB;QACxB,IAAI,CAAC,QAAQ,CAAC,GAAG,CACf,aAAa,EACb,gDAAgD,CACjD,CAAC;QACF,IAAI,CAAC,QAAQ,CAAC,GAAG,CACf,eAAe,EACf,yCAAyC,CAC1C,CAAC;QACF,IAAI,CAAC,QAAQ,CAAC,GAAG,CACf,mBAAmB,EACnB,8CAA8C,CAC/C,CAAC;QACF,IAAI,CAAC,QAAQ,CAAC,GAAG,CACf,cAAc,EACd,uDAAuD,CACxD,CAAC;QACF,IAAI,CAAC,QAAQ,CAAC,GAAG,CACf,gBAAgB,EAChB,0DAA0D,CAC3D,CAAC;IACJ,CAAC;IAEM,KAAK,CAAC,OAAO,CAClB,QAAgB,EAChB,SAAiB,EACjB,QAAa;QAEb,IAAI,SAAS,GAAG,GAAG,CAAC,CAAC,YAAY;QACjC,IAAI,UAAU,GAAG,UAAU,CAAC;QAC5B,IAAI,UAAU,GAAG,GAAG,CAAC;QAErB,mBAAmB;QACnB,KAAK,MAAM,CAAC,WAAW,EAAE,OAAO,CAAC,IAAI,IAAI,CAAC,QAAQ,EAAE,CAAC;YACnD,IAAI,OAAO,CAAC,IAAI,CAAC,SAAS,CAAC,IAAI,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,SAAS,CAAC,QAAQ,CAAC,CAAC,EAAE,CAAC;gBACtE,SAAS,IAAI,WAAW,KAAK,WAAW,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,GAAG,CAAC;gBACrD,UAAU,GAAG,WAAW,CAAC;gBACzB,MAAM;YACR,CAAC;QACH,CAAC;QAED,oBAAoB;QACpB,MAAM,YAAY,GAAG,MAAM,IAAI,CAAC,eAAe,CAAC,aAAa,CAC3D,QAAQ,EACR,SAAS,EACT,QAAQ,CACT,CAAC;QACF,SAAS,IAAI,YAAY,GAAG,GAAG,CAAC;QAEhC,sBAAsB;QACtB,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,OAAO,CAAC,OAAO,CAAC,QAAQ,EAAE,SAAS,EAAE,QAAQ,CAAC,CAAC;QAC1E,SAAS,IAAI,OAAO,GAAG,GAAG,CAAC;QAE3B,wBAAwB;QACxB,SAAS,GAAG,IAAI,CAAC,GAAG,CAAC,SAAS,EAAE,GAAG,CAAC,CAAC;QAErC,MAAM,eAAe,GAAG,IAAI,CAAC,uBAAuB,CAAC,SAAS,EAAE,UAAU,CAAC,CAAC;QAE5E,OAAO;YACL,SAAS;YACT,UAAU;YACV,UAAU;YACV,eAAe;SAChB,CAAC;IACJ,CAAC;IAEO,uBAAuB,CAC7B,SAAiB,EACjB,UAAkB;QAElB,MAAM,eAAe,GAAa,EAAE,CAAC;QAErC,IAAI,SAAS,GAAG,GAAG,EAAE,CAAC;YACpB,eAAe,CAAC,IAAI,CAAC,kCAAkC,CAAC,CAAC;YACzD,eAAe,CAAC,IAAI,CAAC,2BAA2B,CAAC,CAAC;YAClD,eAAe,CAAC,IAAI,CAAC,sBAAsB,CAAC,CAAC;QAC/C,CAAC;aAAM,IAAI,SAAS,GAAG,GAAG,EAAE,CAAC;YAC3B,eAAe,CAAC,IAAI,CAAC,iBAAiB,CAAC,CAAC;YACxC,eAAe,CAAC,IAAI,CAAC,mBAAmB,CAAC,CAAC;YAC1C,eAAe,CAAC,IAAI,CAAC,oBAAoB,CAAC,CAAC;QAC7C,CAAC;aAAM,CAAC;YACN,eAAe,CAAC,IAAI,CAAC,oBAAoB,CAAC,CAAC;YAC3C,eAAe,CAAC,IAAI,CAAC,kBAAkB,CAAC,CAAC;QAC3C,CAAC;QAED,OAAO,eAAe,CAAC;IACzB,CAAC;IAEM,aAAa;QAClB,OAAO;YACL,cAAc,EAAE,IAAI,CAAC,QAAQ,CAAC,IAAI;YAClC,UAAU,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;YACpC,cAAc,EAAE,UAAU;SAC3B,CAAC;IACJ,CAAC;CACF;AA1GD,sDA0GC;AAED,MAAa,eAAe;IAA5B;QACU,mBAAc,GAAuB,IAAI,GAAG,EAAE,CAAC;QAC/C,qBAAgB,GAAW,GAAG,CAAC;IA0DzC,CAAC;IAxDQ,KAAK,CAAC,aAAa,CACxB,QAAgB,EAChB,SAAiB,EACjB,QAAa;QAEb,MAAM,GAAG,GAAG,GAAG,QAAQ,IAAI,SAAS,EAAE,CAAC;QACvC,MAAM,WAAW,GAAG,IAAI,IAAI,EAAE,CAAC,OAAO,EAAE,CAAC;QAEzC,IAAI,CAAC,IAAI,CAAC,cAAc,CAAC,GAAG,CAAC,GAAG,CAAC,EAAE,CAAC;YAClC,IAAI,CAAC,cAAc,CAAC,GAAG,CAAC,GAAG,EAAE,EAAE,CAAC,CAAC;QACnC,CAAC;QAED,MAAM,QAAQ,GAAG,IAAI,CAAC,cAAc,CAAC,GAAG,CAAC,GAAG,CAAE,CAAC;QAE/C,sCAAsC;QACtC,IAAI,QAAQ,CAAC,MAAM,GAAG,EAAE,EAAE,CAAC;YACzB,MAAM,YAAY,GAChB,WAAW,GAAG,QAAQ,CAAC,QAAQ,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,SAAS,CAAC;YAExD,yDAAyD;YACzD,IAAI,YAAY,GAAG,IAAI,EAAE,CAAC;gBACxB,qBAAqB;gBACrB,OAAO,GAAG,CAAC,CAAC,qBAAqB;YACnC,CAAC;YAED,6BAA6B;YAC7B,MAAM,SAAS,GAAG,EAAE,CAAC;YACrB,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,QAAQ,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;gBACzC,SAAS,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,SAAS,GAAG,QAAQ,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC;YACpE,CAAC;YAED,MAAM,WAAW,GACf,SAAS,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC,GAAG,SAAS,CAAC,MAAM,CAAC;YAC1D,MAAM,gBAAgB,GACpB,IAAI,CAAC,GAAG,CAAC,YAAY,GAAG,WAAW,CAAC,GAAG,WAAW,CAAC;YAErD,IAAI,gBAAgB,GAAG,IAAI,CAAC,gBAAgB,EAAE,CAAC;gBAC7C,OAAO,GAAG,CAAC;YACb,CAAC;QACH,CAAC;QAED,wBAAwB;QACxB,QAAQ,CAAC,IAAI,CAAC;YACZ,SAAS,EAAE,WAAW;YACtB,QAAQ,EAAE,QAAQ;SACnB,CAAC,CAAC;QAEH,4CAA4C;QAC5C,MAAM,MAAM,GAAG,WAAW,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,IAAI,CAAC;QACjD,IAAI,CAAC,cAAc,CAAC,GAAG,CACrB,GAAG,EACH,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,SAAS,GAAG,MAAM,CAAC,CAC7C,CAAC;QAEF,OAAO,GAAG,CAAC,CAAC,kBAAkB;IAChC,CAAC;CACF;AA5DD,0CA4DC;AAED,MAAa,aAAa;IAGxB;QAFQ,iBAAY,GAAwB,IAAI,GAAG,EAAE,CAAC;QAGpD,IAAI,CAAC,eAAe,EAAE,CAAC;IACzB,CAAC;IAEO,eAAe;QACrB,8BAA8B;QAC9B,IAAI,CAAC,YAAY,CAAC,GAAG,CAAC,0BAA0B,EAAE,GAAG,CAAC,CAAC;QACvD,IAAI,CAAC,YAAY,CAAC,GAAG,CAAC,qBAAqB,EAAE,GAAG,CAAC,CAAC;QAClD,IAAI,CAAC,YAAY,CAAC,GAAG,CAAC,qBAAqB,EAAE,GAAG,CAAC,CAAC;QAClD,IAAI,CAAC,YAAY,CAAC,GAAG,CAAC,oBAAoB,EAAE,GAAG,CAAC,CAAC;IACnD,CAAC;IAEM,KAAK,CAAC,OAAO,CAClB,QAAgB,EAChB,SAAiB,EACjB,QAAa;QAEb,2BAA2B;QAC3B,IAAI,KAAK,GAAG,GAAG,CAAC;QAEhB,oDAAoD;QACpD,MAAM,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC,QAAQ,EAAE,CAAC;QACnC,IAAI,IAAI,GAAG,CAAC,IAAI,IAAI,GAAG,EAAE,EAAE,CAAC;YAC1B,KAAK,IAAI,GAAG,CAAC;QACf,CAAC;QAED,mCAAmC;QACnC,IAAI,IAAI,CAAC,SAAS,CAAC,QAAQ,CAAC,CAAC,MAAM,GAAG,IAAI,EAAE,CAAC;YAC3C,KAAK,IAAI,GAAG,CAAC;QACf,CAAC;QAED,kCAAkC;QAClC,IAAI,SAAS,CAAC,QAAQ,CAAC,MAAM,CAAC,IAAI,SAAS,CAAC,QAAQ,CAAC,MAAM,CAAC,EAAE,CAAC;YAC7D,KAAK,IAAI,GAAG,CAAC;QACf,CAAC;QAED,0CAA0C;QAC1C,IAAI,SAAS,CAAC,QAAQ,CAAC,OAAO,CAAC,IAAI,SAAS,CAAC,QAAQ,CAAC,QAAQ,CAAC,EAAE,CAAC;YAChE,KAAK,IAAI,GAAG,CAAC;QACf,CAAC;QAED,OAAO,IAAI,CAAC,GAAG,CAAC,KAAK,EAAE,GAAG,CAAC,CAAC;IAC9B,CAAC;CACF;AA9CD,sCA8CC;AAED,MAAa,YAAY;IAAzB;QACU,iBAAY,GAAiC,IAAI,GAAG,EAAE,CAAC;QAC9C,0BAAqB,GAAG,GAAG,CAAC;IAsC/C,CAAC;IApCQ,KAAK,CAAC,SAAS,CAAC,KAAoB;QACzC,MAAM,GAAG,GAAG,KAAK,CAAC,QAAQ,CAAC;QAE3B,IAAI,CAAC,IAAI,CAAC,YAAY,CAAC,GAAG,CAAC,GAAG,CAAC,EAAE,CAAC;YAChC,IAAI,CAAC,YAAY,CAAC,GAAG,CAAC,GAAG,EAAE,EAAE,CAAC,CAAC;QACjC,CAAC;QAED,MAAM,MAAM,GAAG,IAAI,CAAC,YAAY,CAAC,GAAG,CAAC,GAAG,CAAE,CAAC;QAC3C,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;QAEnB,0BAA0B;QAC1B,IAAI,MAAM,CAAC,MAAM,GAAG,IAAI,CAAC,qBAAqB,EAAE,CAAC;YAC/C,MAAM,CAAC,KAAK,EAAE,CAAC;QACjB,CAAC;QAED,gBAAgB;QAChB,OAAO,CAAC,IAAI,CACV,4BAA4B,KAAK,CAAC,QAAQ,WAAW,KAAK,CAAC,SAAS,gBAAgB,KAAK,CAAC,SAAS,EAAE,CACtG,CAAC;IACJ,CAAC;IAEM,eAAe,CAAC,QAAgB;QACrC,OAAO,IAAI,CAAC,YAAY,CAAC,GAAG,CAAC,QAAQ,CAAC,IAAI,EAAE,CAAC;IAC/C,CAAC;IAEM,eAAe;QACpB,MAAM,OAAO,GAAwB,EAAE,CAAC;QACxC,KAAK,MAAM,CAAC,QAAQ,EAAE,MAAM,CAAC,IAAI,IAAI,CAAC,YAAY,EAAE,CAAC;YACnD,OAAO,CAAC,QAAQ,CAAC,GAAG;gBAClB,WAAW,EAAE,MAAM,CAAC,MAAM;gBAC1B,cAAc,EAAE,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,SAAS,GAAG,GAAG,CAAC,CAAC,MAAM;gBAC9D,SAAS,EAAE,MAAM,CAAC,MAAM,CAAC,MAAM,GAAG,CAAC,CAAC,EAAE,SAAS;aAChD,CAAC;QACJ,CAAC;QACD,OAAO,OAAO,CAAC;IACjB,CAAC;CACF;AAxCD,oCAwCC;AAED,MAAa,gBAAgB;IAA7B;QACU,YAAO,GAAQ;YACrB,WAAW,EAAE,CAAC;YACd,WAAW,EAAE,CAAC;YACd,aAAa,EAAE;gBACb,IAAI,EAAE,CAAC;gBACP,OAAO,EAAE,CAAC;gBACV,QAAQ,EAAE,CAAC;gBACX,SAAS,EAAE,CAAC;aACb;YACD,gBAAgB,EAAE,CAAC;YACnB,UAAU,EAAE,IAAI;SACjB,CAAC;IAwCJ,CAAC;IAtCQ,WAAW,CAAC,KAAoB;QACrC,IAAI,CAAC,OAAO,CAAC,WAAW,EAAE,CAAC;QAC3B,IAAI,CAAC,OAAO,CAAC,WAAW,IAAI,KAAK,CAAC,SAAS,GAAG,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;QAC1D,IAAI,CAAC,OAAO,CAAC,aAAa,CAAC,KAAK,CAAC,UAAU,CAAC,EAAE,CAAC;QAE/C,4BAA4B;QAC5B,IAAI,CAAC,OAAO,CAAC,gBAAgB;YAC3B,CAAC,IAAI,CAAC,OAAO,CAAC,gBAAgB,GAAG,CAAC,IAAI,CAAC,OAAO,CAAC,WAAW,GAAG,CAAC,CAAC;gBAC7D,KAAK,CAAC,SAAS,CAAC;gBAClB,IAAI,CAAC,OAAO,CAAC,WAAW,CAAC;QAE3B,IAAI,CAAC,OAAO,CAAC,UAAU,GAAG,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;IACrD,CAAC;IAEM,UAAU;QACf,OAAO;YACL,GAAG,IAAI,CAAC,OAAO;YACf,SAAS,EACP,IAAI,CAAC,OAAO,CAAC,WAAW,GAAG,CAAC;gBAC1B,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,WAAW,GAAG,IAAI,CAAC,OAAO,CAAC,WAAW;gBACrD,CAAC,CAAC,CAAC;SACR,CAAC;IACJ,CAAC;IAEM,YAAY;QACjB,IAAI,CAAC,OAAO,GAAG;YACb,WAAW,EAAE,CAAC;YACd,WAAW,EAAE,CAAC;YACd,aAAa,EAAE;gBACb,IAAI,EAAE,CAAC;gBACP,OAAO,EAAE,CAAC;gBACV,QAAQ,EAAE,CAAC;gBACX,SAAS,EAAE,CAAC;aACb;YACD,gBAAgB,EAAE,CAAC;YACnB,UAAU,EAAE,IAAI;SACjB,CAAC;IACJ,CAAC;CACF;AApDD,4CAoDC;AAED,4BAA4B;AACf,QAAA,eAAe,GAAG,eAAe,CAAC,WAAW,EAAE,CAAC"}

package/dist/security/scanner.d.ts

@@ -0,0 +1,104 @@
+/**
+ * Security scanner for YAML parsing
+ * Comprehensive vulnerability detection and security analysis
+ */
+export interface ScanResult {
+    secure: boolean;
+    score: number;
+    grade: string;
+    vulnerabilities: any[];
+    warnings: string[];
+    recommendations: string[];
+    details: SecurityDetails;
+}
+export interface SecurityDetails {
+    timestamp: number;
+    objectId: string;
+    size: number;
+    depth: number;
+    complexity: string;
+    riskLevel: 'LOW' | 'MEDIUM' | 'HIGH' | 'CRITICAL';
+    scanDuration: number;
+}
+declare class SecurityScanner {
+    private validator;
+    private hardening;
+    private scanHistory;
+    constructor();
+    /**
+     * Executa scanning completo de segurança
+     */
+    scan(obj: any): Promise<ScanResult>;
+    /**
+     * Rápida validação de segurança
+     */
+    quickValidate(obj: any): {
+        isValid: boolean;
+        warnings: number;
+        errors: number;
+    };
+    /**
+     * Análise aprofundada de risco
+     */
+    analyzeRisk(obj: any): {
+        riskLevel: string;
+        factors: string[];
+        score: number;
+    };
+    /**
+     * Gera relatório de segurança
+     */
+    generateReport(obj: any): string;
+    /**
+     * Estatísticas do histórico de scans
+     */
+    getScanHistory(): {
+        totalScans: number;
+        averageScore: number;
+        secureScans: number;
+        insecureScans: number;
+        averageRiskLevel: string;
+    };
+    /**
+     * Extrai warnings dos resultados
+     */
+    private extractWarnings;
+    /**
+     * Estima tamanho do objeto
+     */
+    private estimateObjectSize;
+    /**
+     * Calcula profundidade máxima
+     */
+    private calculateMaxDepth;
+    /**
+     * Estima complexidade do objeto
+     */
+    private estimateComplexity;
+    /**
+     * Conta chaves totais
+     */
+    private countTotalKeys;
+    /**
+     * Gera ID único do objeto
+     */
+    private generateObjectId;
+    /**
+     * Formata bytes
+     */
+    private formatBytes;
+    /**
+     * Reinicializa o scanner
+     */
+    reset(): void;
+}
+/**
+ * Função auxiliar para realizar scan rápido
+ */
+export declare function quickSecurityScan(obj: any): Promise<ScanResult>;
+/**
+ * Função auxiliar para validar segurança básica
+ */
+export declare function validateSecurityBasic(obj: any): boolean;
+export { SecurityScanner as SecurityScanner };
+//# sourceMappingURL=scanner.d.ts.map

package/dist/security/scanner.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"scanner.d.ts","sourceRoot":"","sources":["../../src/security/scanner.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAMH,MAAM,WAAW,UAAU;IACzB,MAAM,EAAE,OAAO,CAAC;IAChB,KAAK,EAAE,MAAM,CAAC;IACd,KAAK,EAAE,MAAM,CAAC;IACd,eAAe,EAAE,GAAG,EAAE,CAAC;IACvB,QAAQ,EAAE,MAAM,EAAE,CAAC;IACnB,eAAe,EAAE,MAAM,EAAE,CAAC;IAC1B,OAAO,EAAE,eAAe,CAAC;CAC1B;AAED,MAAM,WAAW,eAAe;IAC9B,SAAS,EAAE,MAAM,CAAC;IAClB,QAAQ,EAAE,MAAM,CAAC;IACjB,IAAI,EAAE,MAAM,CAAC;IACb,KAAK,EAAE,MAAM,CAAC;IACd,UAAU,EAAE,MAAM,CAAC;IACnB,SAAS,EAAE,KAAK,GAAG,QAAQ,GAAG,MAAM,GAAG,UAAU,CAAC;IAClD,YAAY,EAAE,MAAM,CAAC;CACtB;AAED,cAAM,eAAe;IACnB,OAAO,CAAC,SAAS,CAAoB;IACrC,OAAO,CAAC,SAAS,CAAoB;IACrC,OAAO,CAAC,WAAW,CAAoB;;IAOvC;;OAEG;IACU,IAAI,CAAC,GAAG,EAAE,GAAG,GAAG,OAAO,CAAC,UAAU,CAAC;IA6ChD;;OAEG;IACI,aAAa,CAAC,GAAG,EAAE,GAAG,GAAG;QAAE,OAAO,EAAE,OAAO,CAAC;QAAC,QAAQ,EAAE,MAAM,CAAC;QAAC,MAAM,EAAE,MAAM,CAAA;KAAE;IAStF;;OAEG;IACI,WAAW,CAAC,GAAG,EAAE,GAAG,GAAG;QAAE,SAAS,EAAE,MAAM,CAAC;QAAC,OAAO,EAAE,MAAM,EAAE,CAAC;QAAC,KAAK,EAAE,MAAM,CAAA;KAAE;IAqCrF;;OAEG;IACI,cAAc,CAAC,GAAG,EAAE,GAAG,GAAG,MAAM;IA0CvC;;OAEG;IACI,cAAc,IAAI;QACvB,UAAU,EAAE,MAAM,CAAC;QACnB,YAAY,EAAE,MAAM,CAAC;QACrB,WAAW,EAAE,MAAM,CAAC;QACpB,aAAa,EAAE,MAAM,CAAC;QACtB,gBAAgB,EAAE,MAAM,CAAC;KAC1B;IA8BD;;OAEG;IACH,OAAO,CAAC,eAAe;IAoBvB;;OAEG;IACH,OAAO,CAAC,kBAAkB;IAQ1B;;OAEG;IACH,OAAO,CAAC,iBAAiB;IAgBzB;;OAEG;IACH,OAAO,CAAC,kBAAkB;IAU1B;;OAEG;IACH,OAAO,CAAC,cAAc;IAoBtB;;OAEG;IACH,OAAO,CAAC,gBAAgB;IAexB;;OAEG;IACH,OAAO,CAAC,WAAW;IAMnB;;OAEG;IACI,KAAK,IAAI,IAAI;CAKrB;AAED;;GAEG;AACH,wBAAsB,iBAAiB,CAAC,GAAG,EAAE,GAAG,GAAG,OAAO,CAAC,UAAU,CAAC,CAGrE;AAED;;GAEG;AACH,wBAAgB,qBAAqB,CAAC,GAAG,EAAE,GAAG,GAAG,OAAO,CAKvD;AAED,OAAO,EAAE,eAAe,IAAI,eAAe,EAAE,CAAC"}