npm - beddel - Versions diffs - 0.1.0 - Mend

beddel 0.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (236) hide show

package/README.md +297 -0
package/dist/agents/agentRegistry.d.ts +68 -0
package/dist/agents/agentRegistry.d.ts.map +1 -0
package/dist/agents/agentRegistry.js +222 -0
package/dist/agents/agentRegistry.js.map +1 -0
package/dist/agents/formatter-agent.d.ts +10 -0
package/dist/agents/formatter-agent.d.ts.map +1 -0
package/dist/agents/formatter-agent.js +49 -0
package/dist/agents/formatter-agent.js.map +1 -0
package/dist/agents/genkit-agent.d.ts +12 -0
package/dist/agents/genkit-agent.d.ts.map +1 -0
package/dist/agents/genkit-agent.js +119 -0
package/dist/agents/genkit-agent.js.map +1 -0
package/dist/agents/i18n-messages.d.ts +17 -0
package/dist/agents/i18n-messages.d.ts.map +1 -0
package/dist/agents/i18n-messages.js +92 -0
package/dist/agents/i18n-messages.js.map +1 -0
package/dist/agents/index.d.ts +10 -0
package/dist/agents/index.d.ts.map +1 -0
package/dist/agents/index.js +26 -0
package/dist/agents/index.js.map +1 -0
package/dist/agents/pipeline.d.ts +15 -0
package/dist/agents/pipeline.d.ts.map +1 -0
package/dist/agents/pipeline.js +45 -0
package/dist/agents/pipeline.js.map +1 -0
package/dist/agents/schema-factory.d.ts +40 -0
package/dist/agents/schema-factory.d.ts.map +1 -0
package/dist/agents/schema-factory.js +121 -0
package/dist/agents/schema-factory.js.map +1 -0
package/dist/agents/translation-validators.d.ts +26 -0
package/dist/agents/translation-validators.d.ts.map +1 -0
package/dist/agents/translation-validators.js +77 -0
package/dist/agents/translation-validators.js.map +1 -0
package/dist/agents/translator-agents.d.ts +184 -0
package/dist/agents/translator-agents.d.ts.map +1 -0
package/dist/agents/translator-agents.js +613 -0
package/dist/agents/translator-agents.js.map +1 -0
package/dist/agents/types/translation.types.d.ts +100 -0
package/dist/agents/types/translation.types.d.ts.map +1 -0
package/dist/agents/types/translation.types.js +3 -0
package/dist/agents/types/translation.types.js.map +1 -0
package/dist/agents/validator-agent.d.ts +42 -0
package/dist/agents/validator-agent.d.ts.map +1 -0
package/dist/agents/validator-agent.js +122 -0
package/dist/agents/validator-agent.js.map +1 -0
package/dist/audit/auditTrail.d.ts +55 -0
package/dist/audit/auditTrail.d.ts.map +1 -0
package/dist/audit/auditTrail.js +93 -0
package/dist/audit/auditTrail.js.map +1 -0
package/dist/compliance/gdprEngine.d.ts +44 -0
package/dist/compliance/gdprEngine.d.ts.map +1 -0
package/dist/compliance/gdprEngine.js +178 -0
package/dist/compliance/gdprEngine.js.map +1 -0
package/dist/compliance/lgpdEngine.d.ts +51 -0
package/dist/compliance/lgpdEngine.d.ts.map +1 -0
package/dist/compliance/lgpdEngine.js +221 -0
package/dist/compliance/lgpdEngine.js.map +1 -0
package/dist/config.d.ts +78 -0
package/dist/config.d.ts.map +1 -0
package/dist/config.js +77 -0
package/dist/config.js.map +1 -0
package/dist/errors.d.ts +17 -0
package/dist/errors.d.ts.map +1 -0
package/dist/errors.js +40 -0
package/dist/errors.js.map +1 -0
package/dist/firebase/tenantManager.d.ts +84 -0
package/dist/firebase/tenantManager.d.ts.map +1 -0
package/dist/firebase/tenantManager.js +378 -0
package/dist/firebase/tenantManager.js.map +1 -0
package/dist/index.d.ts +36 -0
package/dist/index.d.ts.map +1 -0
package/dist/index.js +118 -0
package/dist/index.js.map +1 -0
package/dist/integration/secure-yaml-runtime.d.ts +68 -0
package/dist/integration/secure-yaml-runtime.d.ts.map +1 -0
package/dist/integration/secure-yaml-runtime.js +245 -0
package/dist/integration/secure-yaml-runtime.js.map +1 -0
package/dist/parser/secure-yaml-parser.d.ts +62 -0
package/dist/parser/secure-yaml-parser.d.ts.map +1 -0
package/dist/parser/secure-yaml-parser.js +234 -0
package/dist/parser/secure-yaml-parser.js.map +1 -0
package/dist/performance/autoscaling.d.ts +100 -0
package/dist/performance/autoscaling.d.ts.map +1 -0
package/dist/performance/autoscaling.js +339 -0
package/dist/performance/autoscaling.js.map +1 -0
package/dist/performance/benchmark.d.ts +104 -0
package/dist/performance/benchmark.d.ts.map +1 -0
package/dist/performance/benchmark.js +514 -0
package/dist/performance/benchmark.js.map +1 -0
package/dist/performance/index.d.ts +14 -0
package/dist/performance/index.d.ts.map +1 -0
package/dist/performance/index.js +35 -0
package/dist/performance/index.js.map +1 -0
package/dist/performance/monitor.d.ts +126 -0
package/dist/performance/monitor.d.ts.map +1 -0
package/dist/performance/monitor.js +324 -0
package/dist/performance/monitor.js.map +1 -0
package/dist/performance/streaming.d.ts +82 -0
package/dist/performance/streaming.d.ts.map +1 -0
package/dist/performance/streaming.js +287 -0
package/dist/performance/streaming.js.map +1 -0
package/dist/runtime/audit.d.ts +240 -0
package/dist/runtime/audit.d.ts.map +1 -0
package/dist/runtime/audit.js +641 -0
package/dist/runtime/audit.js.map +1 -0
package/dist/runtime/declarativeAgentRuntime.d.ts +123 -0
package/dist/runtime/declarativeAgentRuntime.d.ts.map +1 -0
package/dist/runtime/declarativeAgentRuntime.js +576 -0
package/dist/runtime/declarativeAgentRuntime.js.map +1 -0
package/dist/runtime/isolatedRuntime.d.ts +119 -0
package/dist/runtime/isolatedRuntime.d.ts.map +1 -0
package/dist/runtime/isolatedRuntime.js +425 -0
package/dist/runtime/isolatedRuntime.js.map +1 -0
package/dist/runtime/schemaCompiler.d.ts +35 -0
package/dist/runtime/schemaCompiler.d.ts.map +1 -0
package/dist/runtime/schemaCompiler.js +151 -0
package/dist/runtime/schemaCompiler.js.map +1 -0
package/dist/runtime/simpleRuntime.d.ts +57 -0
package/dist/runtime/simpleRuntime.d.ts.map +1 -0
package/dist/runtime/simpleRuntime.js +187 -0
package/dist/runtime/simpleRuntime.js.map +1 -0
package/dist/security/dashboard.d.ts +89 -0
package/dist/security/dashboard.d.ts.map +1 -0
package/dist/security/dashboard.js +300 -0
package/dist/security/dashboard.js.map +1 -0
package/dist/security/hardening.d.ts +130 -0
package/dist/security/hardening.d.ts.map +1 -0
package/dist/security/hardening.js +414 -0
package/dist/security/hardening.js.map +1 -0
package/dist/security/index.d.ts +128 -0
package/dist/security/index.d.ts.map +1 -0
package/dist/security/index.js +353 -0
package/dist/security/index.js.map +1 -0
package/dist/security/monitor.d.ts +88 -0
package/dist/security/monitor.d.ts.map +1 -0
package/dist/security/monitor.js +356 -0
package/dist/security/monitor.js.map +1 -0
package/dist/security/scanner.d.ts +104 -0
package/dist/security/scanner.d.ts.map +1 -0
package/dist/security/scanner.js +298 -0
package/dist/security/scanner.js.map +1 -0
package/dist/security/score.d.ts +150 -0
package/dist/security/score.d.ts.map +1 -0
package/dist/security/score.js +983 -0
package/dist/security/score.js.map +1 -0
package/dist/security/test-security.d.ts +22 -0
package/dist/security/test-security.d.ts.map +1 -0
package/dist/security/test-security.js +154 -0
package/dist/security/test-security.js.map +1 -0
package/dist/security/threatDetector.d.ts +39 -0
package/dist/security/threatDetector.d.ts.map +1 -0
package/dist/security/threatDetector.js +354 -0
package/dist/security/threatDetector.js.map +1 -0
package/dist/security/validation.d.ts +69 -0
package/dist/security/validation.d.ts.map +1 -0
package/dist/security/validation.js +286 -0
package/dist/security/validation.js.map +1 -0
package/dist/server/api/clientsRoute.d.ts +9 -0
package/dist/server/api/clientsRoute.d.ts.map +1 -0
package/dist/server/api/clientsRoute.js +71 -0
package/dist/server/api/clientsRoute.js.map +1 -0
package/dist/server/api/endpointsRoute.d.ts +8 -0
package/dist/server/api/endpointsRoute.d.ts.map +1 -0
package/dist/server/api/endpointsRoute.js +76 -0
package/dist/server/api/endpointsRoute.js.map +1 -0
package/dist/server/api/graphql.d.ts +9 -0
package/dist/server/api/graphql.d.ts.map +1 -0
package/dist/server/api/graphql.js +180 -0
package/dist/server/api/graphql.js.map +1 -0
package/dist/server/errors.d.ts +19 -0
package/dist/server/errors.d.ts.map +1 -0
package/dist/server/errors.js +42 -0
package/dist/server/errors.js.map +1 -0
package/dist/server/index.d.ts +7 -0
package/dist/server/index.d.ts.map +1 -0
package/dist/server/index.js +24 -0
package/dist/server/index.js.map +1 -0
package/dist/server/kvStore.d.ts +27 -0
package/dist/server/kvStore.d.ts.map +1 -0
package/dist/server/kvStore.js +128 -0
package/dist/server/kvStore.js.map +1 -0
package/dist/server/runtimeSecurity.d.ts +28 -0
package/dist/server/runtimeSecurity.d.ts.map +1 -0
package/dist/server/runtimeSecurity.js +85 -0
package/dist/server/runtimeSecurity.js.map +1 -0
package/dist/server/types.d.ts +53 -0
package/dist/server/types.d.ts.map +1 -0
package/dist/server/types.js +8 -0
package/dist/server/types.js.map +1 -0
package/dist/types/executionContext.d.ts +16 -0
package/dist/types/executionContext.d.ts.map +1 -0
package/dist/types/executionContext.js +3 -0
package/dist/types/executionContext.js.map +1 -0
package/package.json +77 -0
package/src/agents/agentRegistry.ts +272 -0
package/src/agents/image-agent.yaml +86 -0
package/src/agents/joker-agent.yaml +47 -0
package/src/agents/translator-agent.yaml +80 -0
package/src/audit/auditTrail.ts +134 -0
package/src/compliance/gdprEngine.ts +209 -0
package/src/compliance/lgpdEngine.ts +268 -0
package/src/config.ts +179 -0
package/src/errors.ts +35 -0
package/src/firebase/tenantManager.ts +443 -0
package/src/index.ts +125 -0
package/src/integration/secure-yaml-runtime.ts +341 -0
package/src/parser/secure-yaml-parser.ts +273 -0
package/src/performance/autoscaling.ts +495 -0
package/src/performance/benchmark.ts +644 -0
package/src/performance/index.ts +34 -0
package/src/performance/monitor.ts +469 -0
package/src/performance/streaming.ts +317 -0
package/src/runtime/audit.ts +907 -0
package/src/runtime/declarativeAgentRuntime.ts +836 -0
package/src/runtime/isolatedRuntime.ts +572 -0
package/src/runtime/schemaCompiler.ts +228 -0
package/src/runtime/simpleRuntime.ts +201 -0
package/src/security/dashboard.ts +462 -0
package/src/security/hardening.ts +560 -0
package/src/security/index.ts +439 -0
package/src/security/monitor.ts +490 -0
package/src/security/scanner.ts +368 -0
package/src/security/score.ts +1138 -0
package/src/security/threatDetector.ts +481 -0
package/src/security/validation.ts +365 -0
package/src/server/api/clientsRoute.ts +92 -0
package/src/server/api/endpointsRoute.ts +97 -0
package/src/server/api/graphql.ts +249 -0
package/src/server/errors.ts +38 -0
package/src/server/index.ts +6 -0
package/src/server/kvStore.ts +152 -0
package/src/server/runtimeSecurity.ts +102 -0
package/src/server/types.ts +60 -0
package/src/types/executionContext.ts +16 -0
package/tools/seed.ts +365 -0
package/tools/test-endpoints.ts +174 -0

package/src/parser/secure-yaml-parser.ts ADDED Viewed

@@ -0,0 +1,273 @@
+import { load, FAILSAFE_SCHEMA } from 'js-yaml';
+import { AllowedYamlPrimitive, YAMLParserConfig } from '../config';
+import { YAMLParseError, YAMLSecurityError } from '../errors';
+/**
+ * Parser YAML seguro com FAILSAFE_SCHEMA e validações rigorosas
+ * Preloading de módulos críticos realizada no construtor
+ */
+export class SecureYamlParser {
+  private readonly config: YAMLParserConfig;
+  constructor(config: YAMLParserConfig = {}) {
+    this.config = this.validateAndMergeConfig(config);
+  }
+  /**
+   * Valida e merge configuração com padrões seguros
+   */
+  private validateAndMergeConfig(userConfig: YAMLParserConfig): Required<YAMLParserConfig> {
+    const defaultConfig: Required<YAMLParserConfig> = {
+      schema: 'FAILSAFE_SCHEMA',
+      allowedTypes: ['null', 'boolean', 'integer', 'float', 'string'],
+      performanceTarget: 100,
+      maxDepth: 1000,
+      maxKeys: 10000,
+      maxStringLength: 1024 * 1024, // 1MB
+      maxValueSize: 10 * 1024 * 1024, // 10MB total
+      lazyLoading: true,
+      enableCaching: true,
+      validateUTF8: true,
+      strictMode: true,
+      filename: 'secure-parser'
+    };
+    // Merge com configurações do usuário, validando tipos
+    const merged = { ...defaultConfig, ...userConfig };
+    // Validar tipos permitidos contra FAILSAFE_SCHEMA
+    const invalidTypes = merged.allowedTypes.filter((type: AllowedYamlPrimitive) =>
+      !defaultConfig.allowedTypes.includes(type)
+    );
+    if (invalidTypes.length > 0) {
+      throw new YAMLSecurityError(
+        `Tipos não permitidos na FAILSAFE_SCHEMA: ${invalidTypes.join(', ')}`
+      );
+    }
+    return merged;
+  }
+  /**
+   * Parse YAML com segurança máxima usando FAILSAFE_SCHEMA
+   */
+  parseSecure(yamlContent: string): any {
+    const startTime = performance.now();
+    try {
+      // Validar entrada
+      this.validateInput(yamlContent);
+      // Configurar opções de segurança para FAILSAFE_SCHEMA
+      const parseOptions = this.buildSecureOptions();
+      // Fazer parsing com FAILSAFE_SCHEMA
+      const result = load(yamlContent, parseOptions);
+      // Validar resultado
+      this.validateResult(result);
+      const endTime = performance.now();
+      const parseTime = endTime - startTime;
+      // Log performance se exceder target
+      const target = this.config.performanceTarget || 100;
+      if (parseTime > target) {
+        console.warn(`[SecureYamlParser] Performance warning: ${parseTime}ms > ${target}ms target`);
+      }
+      return result;
+    } catch (error) {
+      if (error instanceof Error && error.name === 'YAMLException') {
+        throw new YAMLParseError(`Erro ao fazer parse do YAML: ${error.message}`);
+      }
+      throw error;
+    }
+  }
+  /**
+   * Constrói opções de segurança para FAILSAFE_SCHEMA
+   */
+  private buildSecureOptions(): any {
+    return {
+      schema: FAILSAFE_SCHEMA,
+      json: false,  // Desabilitar JSON mode para maior segurança
+      onWarning: (warning: any) => {
+        console.warn(`[SecureYamlParser] WARN: ${warning}`);
+      },
+      maxDepth: this.config.maxDepth,
+      maxKeys: this.config.maxKeys,
+      strict: this.config.strictMode,
+      // Security hardening
+      filename: this.config.filename || 'secure-parser',
+      onError: (error: any) => {
+        throw new YAMLSecurityError(`Erro de segurança durante parsing: ${error.message}`);
+      }
+    };
+  }
+  /**
+   * Valida entrada antes do parsing
+   */
+  private validateInput(input: string): void {
+    if (typeof input !== 'string') {
+      throw new YAMLParseError('Input deve ser uma string');
+    }
+    const maxStringLength = this.config.maxStringLength || 1048576; // Default 1MB
+    if (input.length > maxStringLength) {
+      throw new YAMLSecurityError(
+        `Tamanho do input (${input.length}) excede limite máximo (${maxStringLength})`
+      );
+    }
+    if (input.trim().length === 0) {
+      throw new YAMLParseError('Input vazio não é permitido');
+    }
+    // Validações UTF-8 básicas
+    if ((this.config.validateUTF8 ?? true) && !this.isValidUTF8(input)) {
+      throw new YAMLSecurityError('Input contém caracteres UTF-8 inválidos');
+    }
+  }
+  /**
+   * Valida resultado após parsing
+   */
+  private validateResult(result: any): void {
+    // Validar profundidade máxima antes de serialização
+    const depth = this.getObjectDepth(result);
+    const maxDepth = this.config.maxDepth || 1000;
+    if (depth > maxDepth) {
+      throw new YAMLSecurityError(
+        `Profundidade do objeto (${depth}) excede limite máximo (${maxDepth})`
+      );
+    }
+    // Validar tipos permitidos
+    if (!this.isAllowedType(result)) {
+      const allowedTypes = this.config.allowedTypes || ['null', 'boolean', 'integer', 'float', 'string'];
+      throw new YAMLSecurityError(
+        'O resultado contém tipos não permitidos. Tipos permitidos: ' +
+        allowedTypes.join(', ')
+      );
+    }
+    // Validar tamanho total aproximado
+    const size = this.estimateObjectSize(result);
+    const maxValueSize = this.config.maxValueSize || 10485760; // Default 10MB
+    if (size > maxValueSize) {
+      throw new YAMLSecurityError(
+        `Tamanho do objeto (${size} bytes) excede limite máximo (${maxValueSize} bytes)`
+      );
+    }
+  }
+  /**
+   * Verifica se é UTF-8 válido
+   */
+  private isValidUTF8(str: string): boolean {
+    try {
+      encodeURIComponent(str);
+      return true;
+    } catch {
+      return false;
+    }
+  }
+  /**
+   * Calcula profundidade do objeto
+   */
+  private getObjectDepth(obj: any, currentDepth = 0): number {
+    if (obj === null || typeof obj !== 'object') {
+      return currentDepth;
+    }
+    if (Array.isArray(obj)) {
+      return obj.reduce((max, item) =>
+        Math.max(max as number, this.getObjectDepth(item, currentDepth + 1)), currentDepth + 1);
+    }
+    const values = Object.values(obj);
+    return values.reduce((max: number, value) =>
+      Math.max(max, this.getObjectDepth(value, currentDepth + 1)), currentDepth + 1);
+  }
+  /**
+   * Verifica se os tipos são permitidos
+   */
+  private isAllowedType(obj: any): boolean {
+    const type = this.getType(obj);
+    // Verificar tipos básicos permitidos
+    const allowedTypes = this.config.allowedTypes || ['null', 'boolean', 'integer', 'float', 'string'];
+    if (!allowedTypes.includes(type as any)) {
+      return false;
+    }
+    // Recursivamente verificar objetos e arrays
+    if (typeof obj === 'object' && obj !== null) {
+      const values = Array.isArray(obj) ? obj : Object.values(obj);
+      return values.every(value => this.isAllowedType(value));
+    }
+    return true;
+  }
+  /**
+   * Estima tamanho do objeto em bytes
+   */
+  private estimateObjectSize(obj: any): number {
+    return JSON.stringify(obj).length;
+  }
+  /**
+   * Obtém tipo completo do objeto
+   */
+  private getType(obj: any): string {
+    if (obj === null) return 'null';
+    if (Array.isArray(obj)) return 'array';
+    if (typeof obj === 'object') return 'object';
+    if (typeof obj === 'number') {
+      return Number.isInteger(obj) ? 'integer' : 'float';
+    }
+    return typeof obj;
+  }
+  /**
+   * Parse assíncrono para lazy loading
+   */
+  async parseSecureAsync(yamlContent: string): Promise<any> {
+    if (this.config.lazyLoading) {
+      // Lazy loading - criar Promise para carregar parser apenas quando necessário
+      return new Promise((resolve, reject) => {
+        setTimeout(() => {
+          try {
+            resolve(this.parseSecure(yamlContent));
+          } catch (error) {
+            reject(error);
+          }
+        }, 0);
+      });
+    } else {
+      return this.parseSecure(yamlContent);
+    }
+  }
+}
+/**
+ * Factory function para criar parser com configuração padrão segura
+ */
+export function createSecureYamlParser(config?: Partial<YAMLParserConfig>): SecureYamlParser {
+  return new SecureYamlParser(config);
+}
+/**
+ * Função utilitária para parse rápido com configuração padrão
+ */
+export function parseSecureYaml(yamlContent: string, config?: Partial<YAMLParserConfig>): any {
+  const parser = createSecureYamlParser(config);
+  return parser.parseSecure(yamlContent);
+}