bugproof 0.1.1

package/dist/sandbox/bugbox.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"bugbox.js","sourceRoot":"","sources":["../../src/sandbox/bugbox.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,EAAiC,aAAa,EAAE,cAAc,EAAE,MAAM,sBAAsB,CAAC;AACpG,OAAO,EAAE,kBAAkB,EAAwB,MAAM,mBAAmB,CAAC;AAC7E,OAAO,EACL,iBAAiB,EACjB,eAAe,EACf,kBAAkB,GAEnB,MAAM,iBAAiB,CAAC;AACzB,OAAO,EACL,qBAAqB,EACrB,yBAAyB,EACzB,oBAAoB,EACpB,oBAAoB,GAErB,MAAM,cAAc,CAAC;AACtB,OAAO,EACL,qBAAqB,EACrB,yBAAyB,GAE1B,MAAM,cAAc,CAAC;AACtB,OAAO,EACL,sBAAsB,EACtB,0BAA0B,GAG3B,MAAM,gBAAgB,CAAC;AAuBxB;;;;GAIG;AACH,MAAM,CAAC,KAAK,UAAU,YAAY,CAAC,OAAsB;IACvD,MAAM,IAAI,GAAG,kBAAkB,EAAE,CAAC;IAClC,MAAM,aAAa,GAAa,EAAE,CAAC;IACnC,MAAM,aAAa,GAAa,EAAE,CAAC;IAEnC,4EAA4E;IAC5E,IAAI,OAAO,CAAC,KAAK,KAAK,WAAW,EAAE,CAAC;QAClC,MAAM,aAAa,GAAG,MAAM,aAAa,CAAC,OAAO,CAAC,cAAc,CAAC,CAAC;QAClE,OAAO;YACL,aAAa;YACb,YAAY,EAAE,IAAI;YAClB,aAAa;YACb,aAAa;YACb,eAAe,EAAE,MAAM;YACvB,eAAe,EAAE,MAAM;YACvB,gBAAgB,EAAE,MAAM;YACxB,kBAAkB,EAAE;gBAClB,iBAAiB,EAAE,aAAa,CAAC,gBAAgB;aAClD;YACD,SAAS,EAAE,GAAG,EAAE,CAAC,cAAc,CAAC,aAAa,CAAC;SAC/C,CAAC;IACJ,CAAC;IAED,sFAAsF;IACtF,MAAM,WAAW,GAAG,iBAAiB,EAAE,CAAC;IACxC,aAAa,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC;IAEjC,6EAA6E;IAC7E,MAAM,aAAa,GAAG,MAAM,aAAa,CAAC;QACxC,GAAG,OAAO,CAAC,cAAc;QACzB,SAAS,EAAE,WAAW,CAAC,YAAY,EAAE,0CAA0C;KAChF,CAAC,CAAC;IAEH,sEAAsE;IACtE,mEAAmE;IACnE,0CAA0C;IAC1C,IAAI,aAAa,CAAC,YAAY,EAAE,CAAC;QAC/B,eAAe,CAAC,WAAW,CAAC,QAAQ,CAAC,CAAC;IACxC,CAAC;IAED,MAAM,kBAAkB,GAAuB;QAC7C,iBAAiB,EAAE,aAAa,CAAC,gBAAgB;KAClD,CAAC;IAEF,uBAAuB;IACvB,IAAI,WAAW,GAAoB,MAAM,CAAC;IAC1C,IAAI,UAAU,GAAG,GAAG,EAAE,GAAE,CAAC,CAAC;IAC1B,MAAM,QAAQ,GAAG,cAAc,IAAI,CAAC,GAAG,EAAE,EAAE,CAAC;IAE5C,IAAI,OAAO,CAAC,KAAK,KAAK,UAAU,IAAI,OAAO,CAAC,KAAK,KAAK,MAAM,EAAE,CAAC;QAC7D,WAAW,GAAG,qBAAqB,CAAC,IAAI,CAAC,CAAC;QAE1C,IAAI,WAAW,KAAK,MAAM,EAAE,CAAC;YAC3B,aAAa,CAAC,IAAI,CAAC,6CAA6C,CAAC,CAAC;QACpE,CAAC;aAAM,CAAC;YACN,aAAa,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;YAC9B,MAAM,SAAS,GAAG,yBAAyB,CAAC,WAAW,EAAE,OAAO,CAAC,OAAO,CAAC,CAAC;YAE1E,kBAAkB,CAAC,OAAO,GAAG,SAAS,CAAC,OAAO,CAAC;YAE/C,IAAI,SAAS,CAAC,YAAY,EAAE,CAAC;gBAC3B,MAAM,OAAO,GAAG,SAAS,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC;gBACrC,0DAA0D;gBAC1D,oBAAoB,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAC;YAC1C,CAAC;YAED,UAAU,GAAG,oBAAoB,CAAC,WAAW,EAAE,QAAQ,CAAC,CAAC;QAC3D,CAAC;IACH,CAAC;IAED,wDAAwD;IACxD,IAAI,YAAY,GAAoB,MAAM,CAAC;IAC3C,IAAI,WAAW,GAAqB,MAAM,CAAC;IAE3C,IAAI,OAAO,CAAC,KAAK,KAAK,MAAM,EAAE,CAAC;QAC7B,oBAAoB;QACpB,YAAY,GAAG,qBAAqB,CAAC,IAAI,CAAC,CAAC;QAC3C,IAAI,YAAY,KAAK,MAAM,EAAE,CAAC;YAC5B,aAAa,CAAC,IAAI,CAAC,6CAA6C,CAAC,CAAC;QACpE,CAAC;aAAM,CAAC;YACN,aAAa,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;YAC9B,kBAAkB,CAAC,OAAO,GAAG,yBAAyB,CACpD,YAAY,EACZ,kBAAkB,CAAC,OAAO,IAAI,OAAO,CAAC,OAAO,CAC9C,CAAC;QACJ,CAAC;QAED,kBAAkB;QAClB,WAAW,GAAG,sBAAsB,CAAC,IAAI,CAAC,CAAC;QAC3C,IAAI,WAAW,KAAK,MAAM,EAAE,CAAC;YAC3B,aAAa,CAAC,IAAI,CAAC,+CAA+C,CAAC,CAAC;QACtE,CAAC;aAAM,IAAI,OAAO,CAAC,cAAc,IAAI,CAAC,OAAO,CAAC,cAAc,CAAC,WAAW,IAAI,OAAO,CAAC,cAAc,CAAC,aAAa,CAAC,EAAE,CAAC;YAClH,aAAa,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC;YAChC,kBAAkB,CAAC,OAAO,GAAG,0BAA0B,CACrD,WAAW,EACX,kBAAkB,CAAC,OAAO,IAAI,OAAO,CAAC,OAAO,EAC7C,OAAO,CAAC,cAAc,CACvB,CAAC;QACJ,CAAC;IACH,CAAC;IAED,4BAA4B;IAC5B,MAAM,SAAS,GAAG,GAAG,EAAE;QACrB,6BAA6B;QAC7B,UAAU,EAAE,CAAC;QACb,yBAAyB;QACzB,cAAc,CAAC,aAAa,CAAC,CAAC;QAC9B,sCAAsC;QACtC,kBAAkB,CAAC,WAAW,CAAC,CAAC;IAClC,CAAC,CAAC;IAEF,OAAO;QACL,aAAa;QACb,YAAY,EAAE,IAAI;QAClB,aAAa;QACb,aAAa;QACb,eAAe,EAAE,WAAW;QAC5B,eAAe,EAAE,YAAY;QAC7B,gBAAgB,EAAE,WAAW;QAC7B,WAAW;QACX,kBAAkB;QAClB,SAAS;KACV,CAAC;AACJ,CAAC"}

package/dist/sandbox/capabilities.d.ts

@@ -0,0 +1,33 @@
+/**
+ * Bug-Box Platform Capabilities Detection
+ *
+ * Probes the current OS for available isolation primitives.
+ * Each check is safe, unprivileged, and fast (<50ms per probe).
+ * Results are used by bugbox.ts to decide which isolation layers to apply.
+ */
+export interface PlatformCapabilities {
+    /** Current OS: 'linux', 'win32', or 'darwin' */
+    platform: NodeJS.Platform;
+    /** Linux: can we run `unshare` for PID/network namespace isolation? */
+    hasUnshare: boolean;
+    /** Linux: is cgroups v2 available for resource limits? */
+    hasCgroupsV2: boolean;
+    /** Windows: Job Objects are always available for process/resource limits */
+    hasJobObjects: boolean;
+    /** Windows: can we create firewall rules via `netsh`? */
+    hasNetsh: boolean;
+    /** macOS: can we use `sandbox-exec` for profile-based sandboxing? */
+    hasSandboxExec: boolean;
+}
+/**
+ * Checks whether a command is available on the system PATH.
+ * Uses `where` on Windows and `which` on Unix.
+ * Never throws — returns false for any error.
+ */
+export declare function commandExists(name: string): boolean;
+/**
+ * Detects which isolation primitives are available on the current platform.
+ * Safe to call repeatedly — each call re-probes (no caching).
+ */
+export declare function detectCapabilities(): PlatformCapabilities;
+//# sourceMappingURL=capabilities.d.ts.map

package/dist/sandbox/capabilities.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"capabilities.d.ts","sourceRoot":"","sources":["../../src/sandbox/capabilities.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAMH,MAAM,WAAW,oBAAoB;IACnC,gDAAgD;IAChD,QAAQ,EAAE,MAAM,CAAC,QAAQ,CAAC;IAC1B,uEAAuE;IACvE,UAAU,EAAE,OAAO,CAAC;IACpB,0DAA0D;IAC1D,YAAY,EAAE,OAAO,CAAC;IACtB,4EAA4E;IAC5E,aAAa,EAAE,OAAO,CAAC;IACvB,yDAAyD;IACzD,QAAQ,EAAE,OAAO,CAAC;IAClB,qEAAqE;IACrE,cAAc,EAAE,OAAO,CAAC;CACzB;AAED;;;;GAIG;AACH,wBAAgB,aAAa,CAAC,IAAI,EAAE,MAAM,GAAG,OAAO,CAcnD;AAED;;;GAGG;AACH,wBAAgB,kBAAkB,IAAI,oBAAoB,CAuBzD"}

package/dist/sandbox/capabilities.js

@@ -0,0 +1,53 @@
+/**
+ * Bug-Box Platform Capabilities Detection
+ *
+ * Probes the current OS for available isolation primitives.
+ * Each check is safe, unprivileged, and fast (<50ms per probe).
+ * Results are used by bugbox.ts to decide which isolation layers to apply.
+ */
+import * as os from 'os';
+import * as fs from 'fs';
+import { spawnSync } from 'child_process';
+/**
+ * Checks whether a command is available on the system PATH.
+ * Uses `where` on Windows and `which` on Unix.
+ * Never throws — returns false for any error.
+ */
+export function commandExists(name) {
+    if (!name || !name.trim())
+        return false;
+    try {
+        const cmd = os.platform() === 'win32' ? 'where' : 'which';
+        const result = spawnSync(cmd, [name], {
+            encoding: 'utf-8',
+            timeout: 3000,
+            stdio: ['pipe', 'pipe', 'pipe'],
+        });
+        return result.status === 0;
+    }
+    catch {
+        return false;
+    }
+}
+/**
+ * Detects which isolation primitives are available on the current platform.
+ * Safe to call repeatedly — each call re-probes (no caching).
+ */
+export function detectCapabilities() {
+    const platform = os.platform();
+    return {
+        platform,
+        // Linux: check for `unshare` (user namespace isolation, no root needed)
+        hasUnshare: platform === 'linux' && commandExists('unshare'),
+        // Linux: check for cgroups v2 unified hierarchy
+        hasCgroupsV2: platform === 'linux' &&
+            fs.existsSync('/sys/fs/cgroup/cgroup.controllers'),
+        // Windows: Job Objects are a built-in Win32 API, always available
+        hasJobObjects: platform === 'win32',
+        // Windows: netsh for firewall rules
+        hasNetsh: platform === 'win32' && commandExists('netsh'),
+        // macOS: sandbox-exec for profile-based sandboxing
+        hasSandboxExec: platform === 'darwin' && commandExists('sandbox-exec'),
+    };
+}
+//# sourceMappingURL=capabilities.js.map

package/dist/sandbox/capabilities.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"capabilities.js","sourceRoot":"","sources":["../../src/sandbox/capabilities.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAEH,OAAO,KAAK,EAAE,MAAM,IAAI,CAAC;AACzB,OAAO,KAAK,EAAE,MAAM,IAAI,CAAC;AACzB,OAAO,EAAE,SAAS,EAAE,MAAM,eAAe,CAAC;AAiB1C;;;;GAIG;AACH,MAAM,UAAU,aAAa,CAAC,IAAY;IACxC,IAAI,CAAC,IAAI,IAAI,CAAC,IAAI,CAAC,IAAI,EAAE;QAAE,OAAO,KAAK,CAAC;IAExC,IAAI,CAAC;QACH,MAAM,GAAG,GAAG,EAAE,CAAC,QAAQ,EAAE,KAAK,OAAO,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,OAAO,CAAC;QAC1D,MAAM,MAAM,GAAG,SAAS,CAAC,GAAG,EAAE,CAAC,IAAI,CAAC,EAAE;YACpC,QAAQ,EAAE,OAAO;YACjB,OAAO,EAAE,IAAI;YACb,KAAK,EAAE,CAAC,MAAM,EAAE,MAAM,EAAE,MAAM,CAAC;SAChC,CAAC,CAAC;QACH,OAAO,MAAM,CAAC,MAAM,KAAK,CAAC,CAAC;IAC7B,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,KAAK,CAAC;IACf,CAAC;AACH,CAAC;AAED;;;GAGG;AACH,MAAM,UAAU,kBAAkB;IAChC,MAAM,QAAQ,GAAG,EAAE,CAAC,QAAQ,EAAE,CAAC;IAE/B,OAAO;QACL,QAAQ;QAER,wEAAwE;QACxE,UAAU,EAAE,QAAQ,KAAK,OAAO,IAAI,aAAa,CAAC,SAAS,CAAC;QAE5D,gDAAgD;QAChD,YAAY,EACV,QAAQ,KAAK,OAAO;YACpB,EAAE,CAAC,UAAU,CAAC,mCAAmC,CAAC;QAEpD,kEAAkE;QAClE,aAAa,EAAE,QAAQ,KAAK,OAAO;QAEnC,oCAAoC;QACpC,QAAQ,EAAE,QAAQ,KAAK,OAAO,IAAI,aAAa,CAAC,OAAO,CAAC;QAExD,mDAAmD;QACnD,cAAc,EAAE,QAAQ,KAAK,QAAQ,IAAI,aAAa,CAAC,cAAc,CAAC;KACvE,CAAC;AACJ,CAAC"}

package/dist/sandbox/filesystem.d.ts

@@ -0,0 +1,50 @@
+/**
+ * Bug-Box Filesystem Isolation
+ *
+ * Creates a structured temp directory with restrictive permissions.
+ * Layout:
+ *   bugbox-XXXXX/
+ *   ├── files/       — Read-only source snapshot (locked after population)
+ *   ├── workspace/   — Read-write CWD for the replayed process
+ *   └── logs/        — Read-write stdout/stderr capture
+ *
+ * Permissions:
+ *   Linux/macOS: chmod 0700 (owner-only)
+ *   Windows:     icacls inheritance removal + current-user-only grant
+ */
+export interface IsolatedDirResult {
+    /** Root of the entire Bug-Box sandbox */
+    rootDir: string;
+    /** Read-only directory for captured source files */
+    filesDir: string;
+    /** Read-write working directory (the replayed process CWD) */
+    workspaceDir: string;
+    /** Read-write directory for stdout/stderr log capture */
+    logsDir: string;
+}
+/**
+ * Creates a new isolated directory structure with restrictive permissions.
+ * Works on Linux, macOS, and Windows without requiring root/admin.
+ */
+export declare function createIsolatedDir(): IsolatedDirResult;
+/**
+ * Locks a directory to read-only.
+ * Used after populating filesDir with the source snapshot,
+ * so the replayed process cannot modify captured files.
+ *
+ * Linux/macOS: removes write bit (chmod a-w recursively).
+ * Windows: icacls to deny write.
+ */
+export declare function lockDirReadOnly(dirPath: string): void;
+/**
+ * Restores write permissions on a directory that was previously locked.
+ * Must be called before cleanup if lockDirReadOnly was used.
+ */
+export declare function unlockDir(dirPath: string): void;
+/**
+ * Removes the entire isolated directory.
+ * Handles read-only files by unlocking first.
+ * Never throws — best-effort cleanup.
+ */
+export declare function cleanupIsolatedDir(result: IsolatedDirResult): void;
+//# sourceMappingURL=filesystem.d.ts.map

package/dist/sandbox/filesystem.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"filesystem.d.ts","sourceRoot":"","sources":["../../src/sandbox/filesystem.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;GAaG;AAOH,MAAM,WAAW,iBAAiB;IAChC,yCAAyC;IACzC,OAAO,EAAE,MAAM,CAAC;IAChB,oDAAoD;IACpD,QAAQ,EAAE,MAAM,CAAC;IACjB,8DAA8D;IAC9D,YAAY,EAAE,MAAM,CAAC;IACrB,yDAAyD;IACzD,OAAO,EAAE,MAAM,CAAC;CACjB;AAED;;;GAGG;AACH,wBAAgB,iBAAiB,IAAI,iBAAiB,CAgBrD;AAED;;;;;;;GAOG;AACH,wBAAgB,eAAe,CAAC,OAAO,EAAE,MAAM,GAAG,IAAI,CAcrD;AAED;;;GAGG;AACH,wBAAgB,SAAS,CAAC,OAAO,EAAE,MAAM,GAAG,IAAI,CAc/C;AAED;;;;GAIG;AACH,wBAAgB,kBAAkB,CAAC,MAAM,EAAE,iBAAiB,GAAG,IAAI,CAelE"}

package/dist/sandbox/filesystem.js

@@ -0,0 +1,134 @@
+/**
+ * Bug-Box Filesystem Isolation
+ *
+ * Creates a structured temp directory with restrictive permissions.
+ * Layout:
+ *   bugbox-XXXXX/
+ *   ├── files/       — Read-only source snapshot (locked after population)
+ *   ├── workspace/   — Read-write CWD for the replayed process
+ *   └── logs/        — Read-write stdout/stderr capture
+ *
+ * Permissions:
+ *   Linux/macOS: chmod 0700 (owner-only)
+ *   Windows:     icacls inheritance removal + current-user-only grant
+ */
+import * as fs from 'fs';
+import * as path from 'path';
+import * as os from 'os';
+import { spawnSync } from 'child_process';
+/**
+ * Creates a new isolated directory structure with restrictive permissions.
+ * Works on Linux, macOS, and Windows without requiring root/admin.
+ */
+export function createIsolatedDir() {
+    const rootDir = fs.mkdtempSync(path.join(os.tmpdir(), 'bugbox-'));
+    // Apply restrictive permissions to the root
+    applyRestrictivePermissions(rootDir);
+    // Create subdirectories
+    const filesDir = path.join(rootDir, 'files');
+    const workspaceDir = path.join(rootDir, 'workspace');
+    const logsDir = path.join(rootDir, 'logs');
+    fs.mkdirSync(filesDir, { recursive: true });
+    fs.mkdirSync(workspaceDir, { recursive: true });
+    fs.mkdirSync(logsDir, { recursive: true });
+    return { rootDir, filesDir, workspaceDir, logsDir };
+}
+/**
+ * Locks a directory to read-only.
+ * Used after populating filesDir with the source snapshot,
+ * so the replayed process cannot modify captured files.
+ *
+ * Linux/macOS: removes write bit (chmod a-w recursively).
+ * Windows: icacls to deny write.
+ */
+export function lockDirReadOnly(dirPath) {
+    if (!fs.existsSync(dirPath))
+        return;
+    if (os.platform() === 'win32') {
+        // On Windows, use icacls to set read-only attribute on all files
+        spawnSync('icacls', [dirPath, '/deny', `${os.userInfo().username}:(W)`, '/T', '/C'], {
+            encoding: 'utf-8',
+            timeout: 10000,
+            stdio: 'pipe',
+        });
+    }
+    else {
+        // Unix: remove write bit recursively
+        setPermissionsRecursive(dirPath, 0o555, 0o444);
+    }
+}
+/**
+ * Restores write permissions on a directory that was previously locked.
+ * Must be called before cleanup if lockDirReadOnly was used.
+ */
+export function unlockDir(dirPath) {
+    if (!fs.existsSync(dirPath))
+        return;
+    if (os.platform() === 'win32') {
+        // Remove the deny rule
+        spawnSync('icacls', [dirPath, '/remove:d', os.userInfo().username, '/T', '/C'], {
+            encoding: 'utf-8',
+            timeout: 10000,
+            stdio: 'pipe',
+        });
+    }
+    else {
+        // Unix: restore write bit
+        setPermissionsRecursive(dirPath, 0o755, 0o644);
+    }
+}
+/**
+ * Removes the entire isolated directory.
+ * Handles read-only files by unlocking first.
+ * Never throws — best-effort cleanup.
+ */
+export function cleanupIsolatedDir(result) {
+    if (!fs.existsSync(result.rootDir))
+        return;
+    try {
+        // Unlock filesDir in case it was locked read-only
+        unlockDir(result.filesDir);
+    }
+    catch {
+        // Best effort
+    }
+    try {
+        fs.rmSync(result.rootDir, { recursive: true, force: true });
+    }
+    catch {
+        // Best effort — on Windows, locked handles may prevent immediate removal
+    }
+}
+// ── Internal helpers ──
+/**
+ * Applies restrictive permissions to the root sandbox directory.
+ * Owner-only on Unix. Current-user-only ACL on Windows.
+ */
+function applyRestrictivePermissions(dirPath) {
+    if (os.platform() === 'win32') {
+        // Remove inherited ACLs, grant full control to current user only
+        spawnSync('icacls', [dirPath, '/inheritance:r', '/grant:r', `${os.userInfo().username}:(OI)(CI)F`], { encoding: 'utf-8', timeout: 5000, stdio: 'pipe' });
+    }
+    else {
+        // Unix: 0700 — owner can read/write/execute, nobody else
+        fs.chmodSync(dirPath, 0o700);
+    }
+}
+/**
+ * Recursively sets permissions on directories and files.
+ * dirMode applies to directories, fileMode applies to files.
+ */
+function setPermissionsRecursive(dirPath, dirMode, fileMode) {
+    fs.chmodSync(dirPath, dirMode);
+    const entries = fs.readdirSync(dirPath, { withFileTypes: true });
+    for (const entry of entries) {
+        const fullPath = path.join(dirPath, entry.name);
+        if (entry.isDirectory()) {
+            setPermissionsRecursive(fullPath, dirMode, fileMode);
+        }
+        else if (entry.isFile()) {
+            fs.chmodSync(fullPath, fileMode);
+        }
+    }
+}
+//# sourceMappingURL=filesystem.js.map

package/dist/sandbox/filesystem.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"filesystem.js","sourceRoot":"","sources":["../../src/sandbox/filesystem.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;GAaG;AAEH,OAAO,KAAK,EAAE,MAAM,IAAI,CAAC;AACzB,OAAO,KAAK,IAAI,MAAM,MAAM,CAAC;AAC7B,OAAO,KAAK,EAAE,MAAM,IAAI,CAAC;AACzB,OAAO,EAAE,SAAS,EAAE,MAAM,eAAe,CAAC;AAa1C;;;GAGG;AACH,MAAM,UAAU,iBAAiB;IAC/B,MAAM,OAAO,GAAG,EAAE,CAAC,WAAW,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,MAAM,EAAE,EAAE,SAAS,CAAC,CAAC,CAAC;IAElE,4CAA4C;IAC5C,2BAA2B,CAAC,OAAO,CAAC,CAAC;IAErC,wBAAwB;IACxB,MAAM,QAAQ,GAAG,IAAI,CAAC,IAAI,CAAC,OAAO,EAAE,OAAO,CAAC,CAAC;IAC7C,MAAM,YAAY,GAAG,IAAI,CAAC,IAAI,CAAC,OAAO,EAAE,WAAW,CAAC,CAAC;IACrD,MAAM,OAAO,GAAG,IAAI,CAAC,IAAI,CAAC,OAAO,EAAE,MAAM,CAAC,CAAC;IAE3C,EAAE,CAAC,SAAS,CAAC,QAAQ,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;IAC5C,EAAE,CAAC,SAAS,CAAC,YAAY,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;IAChD,EAAE,CAAC,SAAS,CAAC,OAAO,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;IAE3C,OAAO,EAAE,OAAO,EAAE,QAAQ,EAAE,YAAY,EAAE,OAAO,EAAE,CAAC;AACtD,CAAC;AAED;;;;;;;GAOG;AACH,MAAM,UAAU,eAAe,CAAC,OAAe;IAC7C,IAAI,CAAC,EAAE,CAAC,UAAU,CAAC,OAAO,CAAC;QAAE,OAAO;IAEpC,IAAI,EAAE,CAAC,QAAQ,EAAE,KAAK,OAAO,EAAE,CAAC;QAC9B,iEAAiE;QACjE,SAAS,CAAC,QAAQ,EAAE,CAAC,OAAO,EAAE,OAAO,EAAE,GAAG,EAAE,CAAC,QAAQ,EAAE,CAAC,QAAQ,MAAM,EAAE,IAAI,EAAE,IAAI,CAAC,EAAE;YACnF,QAAQ,EAAE,OAAO;YACjB,OAAO,EAAE,KAAK;YACd,KAAK,EAAE,MAAM;SACd,CAAC,CAAC;IACL,CAAC;SAAM,CAAC;QACN,qCAAqC;QACrC,uBAAuB,CAAC,OAAO,EAAE,KAAK,EAAE,KAAK,CAAC,CAAC;IACjD,CAAC;AACH,CAAC;AAED;;;GAGG;AACH,MAAM,UAAU,SAAS,CAAC,OAAe;IACvC,IAAI,CAAC,EAAE,CAAC,UAAU,CAAC,OAAO,CAAC;QAAE,OAAO;IAEpC,IAAI,EAAE,CAAC,QAAQ,EAAE,KAAK,OAAO,EAAE,CAAC;QAC9B,uBAAuB;QACvB,SAAS,CAAC,QAAQ,EAAE,CAAC,OAAO,EAAE,WAAW,EAAE,EAAE,CAAC,QAAQ,EAAE,CAAC,QAAQ,EAAE,IAAI,EAAE,IAAI,CAAC,EAAE;YAC9E,QAAQ,EAAE,OAAO;YACjB,OAAO,EAAE,KAAK;YACd,KAAK,EAAE,MAAM;SACd,CAAC,CAAC;IACL,CAAC;SAAM,CAAC;QACN,0BAA0B;QAC1B,uBAAuB,CAAC,OAAO,EAAE,KAAK,EAAE,KAAK,CAAC,CAAC;IACjD,CAAC;AACH,CAAC;AAED;;;;GAIG;AACH,MAAM,UAAU,kBAAkB,CAAC,MAAyB;IAC1D,IAAI,CAAC,EAAE,CAAC,UAAU,CAAC,MAAM,CAAC,OAAO,CAAC;QAAE,OAAO;IAE3C,IAAI,CAAC;QACH,kDAAkD;QAClD,SAAS,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC;IAC7B,CAAC;IAAC,MAAM,CAAC;QACP,cAAc;IAChB,CAAC;IAED,IAAI,CAAC;QACH,EAAE,CAAC,MAAM,CAAC,MAAM,CAAC,OAAO,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC,CAAC;IAC9D,CAAC;IAAC,MAAM,CAAC;QACP,yEAAyE;IAC3E,CAAC;AACH,CAAC;AAED,yBAAyB;AAEzB;;;GAGG;AACH,SAAS,2BAA2B,CAAC,OAAe;IAClD,IAAI,EAAE,CAAC,QAAQ,EAAE,KAAK,OAAO,EAAE,CAAC;QAC9B,iEAAiE;QACjE,SAAS,CACP,QAAQ,EACR,CAAC,OAAO,EAAE,gBAAgB,EAAE,UAAU,EAAE,GAAG,EAAE,CAAC,QAAQ,EAAE,CAAC,QAAQ,YAAY,CAAC,EAC9E,EAAE,QAAQ,EAAE,OAAO,EAAE,OAAO,EAAE,IAAI,EAAE,KAAK,EAAE,MAAM,EAAE,CACpD,CAAC;IACJ,CAAC;SAAM,CAAC;QACN,yDAAyD;QACzD,EAAE,CAAC,SAAS,CAAC,OAAO,EAAE,KAAK,CAAC,CAAC;IAC/B,CAAC;AACH,CAAC;AAED;;;GAGG;AACH,SAAS,uBAAuB,CAC9B,OAAe,EACf,OAAe,EACf,QAAgB;IAEhB,EAAE,CAAC,SAAS,CAAC,OAAO,EAAE,OAAO,CAAC,CAAC;IAE/B,MAAM,OAAO,GAAG,EAAE,CAAC,WAAW,CAAC,OAAO,EAAE,EAAE,aAAa,EAAE,IAAI,EAAE,CAAC,CAAC;IACjE,KAAK,MAAM,KAAK,IAAI,OAAO,EAAE,CAAC;QAC5B,MAAM,QAAQ,GAAG,IAAI,CAAC,IAAI,CAAC,OAAO,EAAE,KAAK,CAAC,IAAI,CAAC,CAAC;QAChD,IAAI,KAAK,CAAC,WAAW,EAAE,EAAE,CAAC;YACxB,uBAAuB,CAAC,QAAQ,EAAE,OAAO,EAAE,QAAQ,CAAC,CAAC;QACvD,CAAC;aAAM,IAAI,KAAK,CAAC,MAAM,EAAE,EAAE,CAAC;YAC1B,EAAE,CAAC,SAAS,CAAC,QAAQ,EAAE,QAAQ,CAAC,CAAC;QACnC,CAAC;IACH,CAAC;AACH,CAAC"}

package/dist/sandbox/network.d.ts

@@ -0,0 +1,68 @@
+/**
+ * Bug-Box Network Isolation
+ *
+ * Provides three strategies to prevent a replayed command from accessing the network:
+ *
+ *   - unshare (Linux):      wraps the command in `unshare --net`, creating a new
+ *                            network namespace with only a loopback interface.
+ *   - sandbox-exec (macOS): wraps the command in `sandbox-exec -p '(deny network*)'`.
+ *   - netsh (Windows):      creates a temporary Windows Firewall rule before the
+ *                            process starts and removes it after the process exits.
+ *                            This is a pre/post approach, not a command wrapper.
+ *   - none:                 no network isolation. Used when no primitive is available,
+ *                            or when the user explicitly opts out.
+ *
+ * Design:
+ *   selectNetworkStrategy()       — picks the best strategy for the current platform.
+ *   buildNetworkIsolationArgs()   — transforms the command array (wrapping if needed).
+ *   createNetworkCleanup()        — returns a cleanup function for post-exec teardown.
+ */
+import { PlatformCapabilities } from './capabilities';
+/** The isolation approach selected for this platform. */
+export type NetworkStrategy = 'unshare' | 'netsh' | 'sandbox-exec' | 'none';
+/** Result of command transformation for network isolation. */
+export interface NetworkIsolationResult {
+    /** The (possibly wrapped) command array to spawn. */
+    command: string[];
+    /** If true, the caller must run pre-exec setup (e.g. netsh rule) before spawn. */
+    needsPreExec: boolean;
+    /** The strategy that was applied. */
+    strategy: NetworkStrategy;
+}
+/**
+ * Selects the best available network isolation strategy for the given platform.
+ */
+export declare function selectNetworkStrategy(caps: PlatformCapabilities): NetworkStrategy;
+/**
+ * Transforms a command array to include network isolation, if the strategy
+ * supports command wrapping (unshare, sandbox-exec).
+ *
+ * For `netsh`, the command is returned unchanged because netsh uses firewall
+ * rules applied before/after the process, not a wrapper.
+ *
+ * For `none`, the command is returned unchanged.
+ */
+export declare function buildNetworkIsolationArgs(strategy: NetworkStrategy, command: string[]): NetworkIsolationResult;
+/**
+ * Creates a cleanup function that removes any network isolation artifacts
+ * after the replayed process exits.
+ *
+ * - unshare / sandbox-exec: the kernel automatically tears down the namespace
+ *   or sandbox when the process exits. Cleanup is a no-op.
+ * - netsh: removes the temporary firewall rule by name.
+ * - none: no-op.
+ *
+ * @param strategy  The isolation strategy that was applied.
+ * @param ruleName  (netsh only) The firewall rule name to remove.
+ */
+export declare function createNetworkCleanup(strategy: NetworkStrategy, ruleName?: string): () => void;
+/**
+ * Adds a Windows Firewall rule that blocks all outbound traffic for a process.
+ * Called as pre-exec for the `netsh` strategy.
+ *
+ * @param ruleName  Unique rule name for later cleanup.
+ * @param exePath   Path to the executable to block.
+ * @returns true if the rule was added, false on failure.
+ */
+export declare function addFirewallBlockRule(ruleName: string, exePath: string): boolean;
+//# sourceMappingURL=network.d.ts.map

package/dist/sandbox/network.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"network.d.ts","sourceRoot":"","sources":["../../src/sandbox/network.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;GAkBG;AAEH,OAAO,EAAE,oBAAoB,EAAE,MAAM,gBAAgB,CAAC;AAGtD,yDAAyD;AACzD,MAAM,MAAM,eAAe,GAAG,SAAS,GAAG,OAAO,GAAG,cAAc,GAAG,MAAM,CAAC;AAE5E,8DAA8D;AAC9D,MAAM,WAAW,sBAAsB;IACrC,qDAAqD;IACrD,OAAO,EAAE,MAAM,EAAE,CAAC;IAClB,kFAAkF;IAClF,YAAY,EAAE,OAAO,CAAC;IACtB,qCAAqC;IACrC,QAAQ,EAAE,eAAe,CAAC;CAC3B;AAED;;GAEG;AACH,wBAAgB,qBAAqB,CAAC,IAAI,EAAE,oBAAoB,GAAG,eAAe,CAWjF;AAED;;;;;;;;GAQG;AACH,wBAAgB,yBAAyB,CACvC,QAAQ,EAAE,eAAe,EACzB,OAAO,EAAE,MAAM,EAAE,GAChB,sBAAsB,CA4CxB;AAED;;;;;;;;;;;GAWG;AACH,wBAAgB,oBAAoB,CAClC,QAAQ,EAAE,eAAe,EACzB,QAAQ,CAAC,EAAE,MAAM,GAChB,MAAM,IAAI,CAiBZ;AAED;;;;;;;GAOG;AACH,wBAAgB,oBAAoB,CAAC,QAAQ,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,GAAG,OAAO,CAiB/E"}

package/dist/sandbox/network.js

@@ -0,0 +1,136 @@
+/**
+ * Bug-Box Network Isolation
+ *
+ * Provides three strategies to prevent a replayed command from accessing the network:
+ *
+ *   - unshare (Linux):      wraps the command in `unshare --net`, creating a new
+ *                            network namespace with only a loopback interface.
+ *   - sandbox-exec (macOS): wraps the command in `sandbox-exec -p '(deny network*)'`.
+ *   - netsh (Windows):      creates a temporary Windows Firewall rule before the
+ *                            process starts and removes it after the process exits.
+ *                            This is a pre/post approach, not a command wrapper.
+ *   - none:                 no network isolation. Used when no primitive is available,
+ *                            or when the user explicitly opts out.
+ *
+ * Design:
+ *   selectNetworkStrategy()       — picks the best strategy for the current platform.
+ *   buildNetworkIsolationArgs()   — transforms the command array (wrapping if needed).
+ *   createNetworkCleanup()        — returns a cleanup function for post-exec teardown.
+ */
+import { spawnSync } from 'child_process';
+/**
+ * Selects the best available network isolation strategy for the given platform.
+ */
+export function selectNetworkStrategy(caps) {
+    switch (caps.platform) {
+        case 'linux':
+            return caps.hasUnshare ? 'unshare' : 'none';
+        case 'win32':
+            return caps.hasNetsh ? 'netsh' : 'none';
+        case 'darwin':
+            return caps.hasSandboxExec ? 'sandbox-exec' : 'none';
+        default:
+            return 'none';
+    }
+}
+/**
+ * Transforms a command array to include network isolation, if the strategy
+ * supports command wrapping (unshare, sandbox-exec).
+ *
+ * For `netsh`, the command is returned unchanged because netsh uses firewall
+ * rules applied before/after the process, not a wrapper.
+ *
+ * For `none`, the command is returned unchanged.
+ */
+export function buildNetworkIsolationArgs(strategy, command) {
+    switch (strategy) {
+        case 'unshare':
+            return {
+                // unshare --net creates a new network namespace with only loopback.
+                // --map-root-user allows it to work without root (user namespace).
+                command: ['unshare', '--net', '--map-root-user', '--', ...command],
+                needsPreExec: false,
+                strategy,
+            };
+        case 'sandbox-exec':
+            return {
+                // sandbox-exec with a deny-network profile.
+                // The profile denies all network operations; the process can still
+                // use local filesystem and IPC.
+                command: [
+                    'sandbox-exec',
+                    '-p',
+                    '(version 1)(allow default)(deny network*)',
+                    '--',
+                    ...command,
+                ],
+                needsPreExec: false,
+                strategy,
+            };
+        case 'netsh':
+            // netsh doesn't wrap the command. The caller must call pre-exec setup
+            // (addFirewallBlockRule) and post-exec cleanup (removeFirewallBlockRule).
+            return {
+                command,
+                needsPreExec: true,
+                strategy,
+            };
+        case 'none':
+        default:
+            return {
+                command,
+                needsPreExec: false,
+                strategy,
+            };
+    }
+}
+/**
+ * Creates a cleanup function that removes any network isolation artifacts
+ * after the replayed process exits.
+ *
+ * - unshare / sandbox-exec: the kernel automatically tears down the namespace
+ *   or sandbox when the process exits. Cleanup is a no-op.
+ * - netsh: removes the temporary firewall rule by name.
+ * - none: no-op.
+ *
+ * @param strategy  The isolation strategy that was applied.
+ * @param ruleName  (netsh only) The firewall rule name to remove.
+ */
+export function createNetworkCleanup(strategy, ruleName) {
+    if (strategy === 'netsh' && ruleName) {
+        return () => {
+            try {
+                spawnSync('netsh', ['advfirewall', 'firewall', 'delete', 'rule', `name=${ruleName}`], { encoding: 'utf-8', timeout: 5000, stdio: 'pipe' });
+            }
+            catch {
+                // Best effort — rule may not exist or we lack permissions
+            }
+        };
+    }
+    // All other strategies: kernel cleans up automatically, or nothing was applied
+    return () => { };
+}
+/**
+ * Adds a Windows Firewall rule that blocks all outbound traffic for a process.
+ * Called as pre-exec for the `netsh` strategy.
+ *
+ * @param ruleName  Unique rule name for later cleanup.
+ * @param exePath   Path to the executable to block.
+ * @returns true if the rule was added, false on failure.
+ */
+export function addFirewallBlockRule(ruleName, exePath) {
+    try {
+        const result = spawnSync('netsh', [
+            'advfirewall', 'firewall', 'add', 'rule',
+            `name=${ruleName}`,
+            'dir=out',
+            'action=block',
+            `program=${exePath}`,
+        ], { encoding: 'utf-8', timeout: 5000, stdio: 'pipe' });
+        return result.status === 0;
+    }
+    catch {
+        return false;
+    }
+}
+//# sourceMappingURL=network.js.map

package/dist/sandbox/network.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"network.js","sourceRoot":"","sources":["../../src/sandbox/network.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;GAkBG;AAGH,OAAO,EAAE,SAAS,EAAE,MAAM,eAAe,CAAC;AAe1C;;GAEG;AACH,MAAM,UAAU,qBAAqB,CAAC,IAA0B;IAC9D,QAAQ,IAAI,CAAC,QAAQ,EAAE,CAAC;QACtB,KAAK,OAAO;YACV,OAAO,IAAI,CAAC,UAAU,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,MAAM,CAAC;QAC9C,KAAK,OAAO;YACV,OAAO,IAAI,CAAC,QAAQ,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC;QAC1C,KAAK,QAAQ;YACX,OAAO,IAAI,CAAC,cAAc,CAAC,CAAC,CAAC,cAAc,CAAC,CAAC,CAAC,MAAM,CAAC;QACvD;YACE,OAAO,MAAM,CAAC;IAClB,CAAC;AACH,CAAC;AAED;;;;;;;;GAQG;AACH,MAAM,UAAU,yBAAyB,CACvC,QAAyB,EACzB,OAAiB;IAEjB,QAAQ,QAAQ,EAAE,CAAC;QACjB,KAAK,SAAS;YACZ,OAAO;gBACL,oEAAoE;gBACpE,mEAAmE;gBACnE,OAAO,EAAE,CAAC,SAAS,EAAE,OAAO,EAAE,iBAAiB,EAAE,IAAI,EAAE,GAAG,OAAO,CAAC;gBAClE,YAAY,EAAE,KAAK;gBACnB,QAAQ;aACT,CAAC;QAEJ,KAAK,cAAc;YACjB,OAAO;gBACL,4CAA4C;gBAC5C,mEAAmE;gBACnE,gCAAgC;gBAChC,OAAO,EAAE;oBACP,cAAc;oBACd,IAAI;oBACJ,2CAA2C;oBAC3C,IAAI;oBACJ,GAAG,OAAO;iBACX;gBACD,YAAY,EAAE,KAAK;gBACnB,QAAQ;aACT,CAAC;QAEJ,KAAK,OAAO;YACV,sEAAsE;YACtE,0EAA0E;YAC1E,OAAO;gBACL,OAAO;gBACP,YAAY,EAAE,IAAI;gBAClB,QAAQ;aACT,CAAC;QAEJ,KAAK,MAAM,CAAC;QACZ;YACE,OAAO;gBACL,OAAO;gBACP,YAAY,EAAE,KAAK;gBACnB,QAAQ;aACT,CAAC;IACN,CAAC;AACH,CAAC;AAED;;;;;;;;;;;GAWG;AACH,MAAM,UAAU,oBAAoB,CAClC,QAAyB,EACzB,QAAiB;IAEjB,IAAI,QAAQ,KAAK,OAAO,IAAI,QAAQ,EAAE,CAAC;QACrC,OAAO,GAAG,EAAE;YACV,IAAI,CAAC;gBACH,SAAS,CACP,OAAO,EACP,CAAC,aAAa,EAAE,UAAU,EAAE,QAAQ,EAAE,MAAM,EAAE,QAAQ,QAAQ,EAAE,CAAC,EACjE,EAAE,QAAQ,EAAE,OAAO,EAAE,OAAO,EAAE,IAAI,EAAE,KAAK,EAAE,MAAM,EAAE,CACpD,CAAC;YACJ,CAAC;YAAC,MAAM,CAAC;gBACP,0DAA0D;YAC5D,CAAC;QACH,CAAC,CAAC;IACJ,CAAC;IAED,+EAA+E;IAC/E,OAAO,GAAG,EAAE,GAAE,CAAC,CAAC;AAClB,CAAC;AAED;;;;;;;GAOG;AACH,MAAM,UAAU,oBAAoB,CAAC,QAAgB,EAAE,OAAe;IACpE,IAAI,CAAC;QACH,MAAM,MAAM,GAAG,SAAS,CACtB,OAAO,EACP;YACE,aAAa,EAAE,UAAU,EAAE,KAAK,EAAE,MAAM;YACxC,QAAQ,QAAQ,EAAE;YAClB,SAAS;YACT,cAAc;YACd,WAAW,OAAO,EAAE;SACrB,EACD,EAAE,QAAQ,EAAE,OAAO,EAAE,OAAO,EAAE,IAAI,EAAE,KAAK,EAAE,MAAM,EAAE,CACpD,CAAC;QACF,OAAO,MAAM,CAAC,MAAM,KAAK,CAAC,CAAC;IAC7B,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,KAAK,CAAC;IACf,CAAC;AACH,CAAC"}

package/dist/sandbox/process.d.ts

@@ -0,0 +1,17 @@
+/**
+ * Bug-Box Process Isolation
+ *
+ * Provides OS-level process namespace isolation so the replayed command
+ * cannot see or signal host processes.
+ */
+import { PlatformCapabilities } from './capabilities';
+export type ProcessStrategy = 'unshare' | 'none';
+/**
+ * Selects the best available process isolation strategy based on capabilities.
+ */
+export declare function selectProcessStrategy(caps: PlatformCapabilities): ProcessStrategy;
+/**
+ * Modifies the command array to run within a new process namespace.
+ */
+export declare function buildProcessIsolationArgs(strategy: ProcessStrategy, command: string[]): string[];
+//# sourceMappingURL=process.d.ts.map

package/dist/sandbox/process.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"process.d.ts","sourceRoot":"","sources":["../../src/sandbox/process.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,EAAE,oBAAoB,EAAE,MAAM,gBAAgB,CAAC;AAEtD,MAAM,MAAM,eAAe,GAAG,SAAS,GAAG,MAAM,CAAC;AAEjD;;GAEG;AACH,wBAAgB,qBAAqB,CAAC,IAAI,EAAE,oBAAoB,GAAG,eAAe,CAQjF;AAED;;GAEG;AACH,wBAAgB,yBAAyB,CAAC,QAAQ,EAAE,eAAe,EAAE,OAAO,EAAE,MAAM,EAAE,GAAG,MAAM,EAAE,CAShG"}

package/dist/sandbox/process.js

@@ -0,0 +1,30 @@
+/**
+ * Bug-Box Process Isolation
+ *
+ * Provides OS-level process namespace isolation so the replayed command
+ * cannot see or signal host processes.
+ */
+/**
+ * Selects the best available process isolation strategy based on capabilities.
+ */
+export function selectProcessStrategy(caps) {
+    if (caps.platform === 'linux' && caps.hasUnshare) {
+        return 'unshare';
+    }
+    // Windows Job Objects provide resource limits but not true PID namespace hiding.
+    // We handle Windows Job Objects in the resources layer instead.
+    return 'none';
+}
+/**
+ * Modifies the command array to run within a new process namespace.
+ */
+export function buildProcessIsolationArgs(strategy, command) {
+    if (strategy === 'unshare') {
+        // --pid: create new PID namespace
+        // --fork: fork the new process (required for --pid)
+        // --mount-proc: mount a new /proc filesystem so tools like `ps` work correctly
+        return ['unshare', '--pid', '--fork', '--mount-proc', '--', ...command];
+    }
+    return command;
+}
+//# sourceMappingURL=process.js.map

package/dist/sandbox/process.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"process.js","sourceRoot":"","sources":["../../src/sandbox/process.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAMH;;GAEG;AACH,MAAM,UAAU,qBAAqB,CAAC,IAA0B;IAC9D,IAAI,IAAI,CAAC,QAAQ,KAAK,OAAO,IAAI,IAAI,CAAC,UAAU,EAAE,CAAC;QACjD,OAAO,SAAS,CAAC;IACnB,CAAC;IAED,iFAAiF;IACjF,gEAAgE;IAChE,OAAO,MAAM,CAAC;AAChB,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,yBAAyB,CAAC,QAAyB,EAAE,OAAiB;IACpF,IAAI,QAAQ,KAAK,SAAS,EAAE,CAAC;QAC3B,kCAAkC;QAClC,oDAAoD;QACpD,+EAA+E;QAC/E,OAAO,CAAC,SAAS,EAAE,OAAO,EAAE,QAAQ,EAAE,cAAc,EAAE,IAAI,EAAE,GAAG,OAAO,CAAC,CAAC;IAC1E,CAAC;IAED,OAAO,OAAO,CAAC;AACjB,CAAC"}

package/dist/sandbox/resources.d.ts

@@ -0,0 +1,21 @@
+/**
+ * Bug-Box Resource Isolation
+ *
+ * Provides resource limits (memory, CPU) for the replayed process
+ * using cgroups v2 on Linux and Job Objects on Windows.
+ */
+import { PlatformCapabilities } from './capabilities';
+export type ResourceStrategy = 'cgroups' | 'job-object' | 'none';
+export interface ResourceLimits {
+    maxMemoryMB?: number;
+    maxCpuPercent?: number;
+}
+/**
+ * Selects the best available resource isolation strategy based on capabilities.
+ */
+export declare function selectResourceStrategy(caps: PlatformCapabilities): ResourceStrategy;
+/**
+ * Modifies the command array to apply resource limits.
+ */
+export declare function buildResourceIsolationArgs(strategy: ResourceStrategy, command: string[], limits: ResourceLimits): string[];
+//# sourceMappingURL=resources.d.ts.map

package/dist/sandbox/resources.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"resources.d.ts","sourceRoot":"","sources":["../../src/sandbox/resources.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,EAAE,oBAAoB,EAAE,MAAM,gBAAgB,CAAC;AAEtD,MAAM,MAAM,gBAAgB,GAAG,SAAS,GAAG,YAAY,GAAG,MAAM,CAAC;AAEjE,MAAM,WAAW,cAAc;IAC7B,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,aAAa,CAAC,EAAE,MAAM,CAAC;CACxB;AAED;;GAEG;AACH,wBAAgB,sBAAsB,CAAC,IAAI,EAAE,oBAAoB,GAAG,gBAAgB,CAUnF;AAED;;GAEG;AACH,wBAAgB,0BAA0B,CACxC,QAAQ,EAAE,gBAAgB,EAC1B,OAAO,EAAE,MAAM,EAAE,EACjB,MAAM,EAAE,cAAc,GACrB,MAAM,EAAE,CA8CV"}