bugproof 0.1.2 → 0.2.5

package/dist/share/gist.js

@@ -0,0 +1,158 @@
+/**
+ * Share Engine — push .bug artifacts to GitHub Gist
+ *
+ * Creates a secret gist with the artifact contents for easy sharing.
+ * Recipients can download and replay with: bugproof pull <gist-url>
+ */
+import * as fs from 'fs';
+import * as path from 'path';
+import * as os from 'os';
+import * as https from 'https';
+import { extractZip } from '../utils/archive.js';
+export function sanitizeShareError(input) {
+    return input
+        .replace(/Bearer\s+[A-Za-z0-9_\-.]+/gi, 'Bearer [REDACTED]')
+        .replace(/(gh[pousr]_[A-Za-z0-9_]+)/g, '[REDACTED_TOKEN]')
+        .replace(/("authorization"\s*:\s*")([^"]+)(")/gi, '$1[REDACTED]$3')
+        .replace(/(token\s*[=:]\s*)([^\s,]+)/gi, '$1[REDACTED]');
+}
+/**
+ * Uploads artifact contents to a GitHub Gist.
+ * Requires GITHUB_TOKEN or BUGPROOF_GITHUB_TOKEN env var.
+ */
+export async function shareToGist(artifactPath, options = {}) {
+    const token = process.env.BUGPROOF_GITHUB_TOKEN || process.env.GITHUB_TOKEN;
+    if (!token) {
+        throw new Error('GitHub token required for sharing. Set GITHUB_TOKEN or BUGPROOF_GITHUB_TOKEN environment variable.\n' +
+            'Create a token at: https://github.com/settings/tokens (needs "gist" scope)');
+    }
+    // Extract artifact if it's a zip
+    let extractDir;
+    let targetDir;
+    const stat = fs.statSync(artifactPath);
+    if (stat.isFile()) {
+        extractDir = fs.mkdtempSync(path.join(os.tmpdir(), 'bugproof-share-'));
+        await extractZip(artifactPath, extractDir);
+        targetDir = extractDir;
+    }
+    else {
+        targetDir = artifactPath;
+    }
+    try {
+        // Read key files from the artifact
+        const files = {};
+        const keyFiles = ['manifest.json', 'failure.json', 'run.json', 'env.schema.json'];
+        for (const filename of keyFiles) {
+            const filePath = path.join(targetDir, filename);
+            if (fs.existsSync(filePath)) {
+                files[filename] = { content: fs.readFileSync(filePath, 'utf-8') };
+            }
+        }
+        // Add a README for context
+        const manifest = JSON.parse(fs.readFileSync(path.join(targetDir, 'manifest.json'), 'utf-8'));
+        files['README.md'] = {
+            content: generateGistReadme(manifest),
+        };
+        // Add stderr/stdout logs if they exist
+        const stderrPath = path.join(targetDir, 'stderr.log');
+        const stdoutPath = path.join(targetDir, 'stdout.log');
+        if (fs.existsSync(stderrPath)) {
+            const content = fs.readFileSync(stderrPath, 'utf-8');
+            if (content.length <= 100000) { // Gist file size limit
+                files['stderr.log'] = { content };
+            }
+        }
+        if (fs.existsSync(stdoutPath)) {
+            const content = fs.readFileSync(stdoutPath, 'utf-8');
+            if (content.length <= 100000) {
+                files['stdout.log'] = { content };
+            }
+        }
+        // Create the gist
+        const gistData = JSON.stringify({
+            description: options.description || `BugProof: ${manifest.name} — ${manifest.description}`,
+            public: options.public || false,
+            files,
+        });
+        const result = await httpPost('https://api.github.com/gists', gistData, token);
+        const parsed = JSON.parse(result);
+        return {
+            url: parsed.html_url,
+            gistId: parsed.id,
+            rawUrl: parsed.html_url + '/raw',
+        };
+    }
+    finally {
+        if (extractDir) {
+            fs.rmSync(extractDir, { recursive: true, force: true });
+        }
+    }
+}
+// eslint-disable-next-line @typescript-eslint/no-explicit-any
+function generateGistReadme(manifest) {
+    return `# BugProof Artifact: ${manifest.name}
+
+> ${manifest.description}
+
+## Quick Replay
+
+\`\`\`bash
+# Download and replay this bug:
+bugproof pull ${manifest.name}
+\`\`\`
+
+## Details
+
+| Field | Value |
+|-------|-------|
+| Command | \`${manifest.command.join(' ')}\` |
+| Exit Code | ${manifest.exit_code} |
+| Platform | ${manifest.captured_on.os}/${manifest.captured_on.arch} |
+| Node | ${manifest.captured_on.node_version} |
+| Captured | ${manifest.captured_at} |
+| Git | ${manifest.captured_on.git_branch || 'n/a'} @ ${(manifest.captured_on.git_commit || 'n/a').slice(0, 8)} |
+
+## Files
+
+${manifest.files_count} files captured (${(manifest.files_size_bytes / 1024).toFixed(1)} KB)
+
+---
+*Generated by [BugProof](https://github.com/sidinsearch/BugProof) v${manifest.bugproof_version}*
+`;
+}
+function httpPost(url, data, token) {
+    return new Promise((resolve, reject) => {
+        const urlObj = new URL(url);
+        const options = {
+            hostname: urlObj.hostname,
+            port: 443,
+            path: urlObj.pathname,
+            method: 'POST',
+            headers: {
+                'Content-Type': 'application/json',
+                'Authorization': `Bearer ${token}`,
+                'User-Agent': 'BugProof-CLI',
+                'Accept': 'application/vnd.github+json',
+                'Content-Length': Buffer.byteLength(data),
+            },
+        };
+        const req = https.request(options, (res) => {
+            let body = '';
+            res.on('data', (chunk) => { body += chunk; });
+            res.on('end', () => {
+                if (res.statusCode && res.statusCode >= 200 && res.statusCode < 300) {
+                    resolve(body);
+                }
+                else {
+                    reject(new Error(sanitizeShareError(`GitHub API error ${res.statusCode}: ${body}`)));
+                }
+            });
+        });
+        req.on('error', (err) => {
+            reject(new Error(sanitizeShareError(String(err))));
+        });
+        req.write(data);
+        req.end();
+    });
+}
+//# sourceMappingURL=gist.js.map

package/dist/share/gist.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"gist.js","sourceRoot":"","sources":["../../src/share/gist.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,KAAK,EAAE,MAAM,IAAI,CAAC;AACzB,OAAO,KAAK,IAAI,MAAM,MAAM,CAAC;AAC7B,OAAO,KAAK,EAAE,MAAM,IAAI,CAAC;AACzB,OAAO,KAAK,KAAK,MAAM,OAAO,CAAC;AAC/B,OAAO,EAAE,UAAU,EAAE,MAAM,qBAAqB,CAAC;AAYjD,MAAM,UAAU,kBAAkB,CAAC,KAAa;IAC9C,OAAO,KAAK;SACT,OAAO,CAAC,6BAA6B,EAAE,mBAAmB,CAAC;SAC3D,OAAO,CAAC,4BAA4B,EAAE,kBAAkB,CAAC;SACzD,OAAO,CAAC,uCAAuC,EAAE,gBAAgB,CAAC;SAClE,OAAO,CAAC,8BAA8B,EAAE,cAAc,CAAC,CAAC;AAC7D,CAAC;AAED;;;GAGG;AACH,MAAM,CAAC,KAAK,UAAU,WAAW,CAC/B,YAAoB,EACpB,UAAsD,EAAE;IAExD,MAAM,KAAK,GAAG,OAAO,CAAC,GAAG,CAAC,qBAAqB,IAAI,OAAO,CAAC,GAAG,CAAC,YAAY,CAAC;IAC5E,IAAI,CAAC,KAAK,EAAE,CAAC;QACX,MAAM,IAAI,KAAK,CACb,sGAAsG;YACtG,4EAA4E,CAC7E,CAAC;IACJ,CAAC;IAED,iCAAiC;IACjC,IAAI,UAA8B,CAAC;IACnC,IAAI,SAAiB,CAAC;IAEtB,MAAM,IAAI,GAAG,EAAE,CAAC,QAAQ,CAAC,YAAY,CAAC,CAAC;IACvC,IAAI,IAAI,CAAC,MAAM,EAAE,EAAE,CAAC;QAClB,UAAU,GAAG,EAAE,CAAC,WAAW,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,MAAM,EAAE,EAAE,iBAAiB,CAAC,CAAC,CAAC;QACvE,MAAM,UAAU,CAAC,YAAY,EAAE,UAAU,CAAC,CAAC;QAC3C,SAAS,GAAG,UAAU,CAAC;IACzB,CAAC;SAAM,CAAC;QACN,SAAS,GAAG,YAAY,CAAC;IAC3B,CAAC;IAED,IAAI,CAAC;QACH,mCAAmC;QACnC,MAAM,KAAK,GAA6B,EAAE,CAAC;QAC3C,MAAM,QAAQ,GAAG,CAAC,eAAe,EAAE,cAAc,EAAE,UAAU,EAAE,iBAAiB,CAAC,CAAC;QAElF,KAAK,MAAM,QAAQ,IAAI,QAAQ,EAAE,CAAC;YAChC,MAAM,QAAQ,GAAG,IAAI,CAAC,IAAI,CAAC,SAAS,EAAE,QAAQ,CAAC,CAAC;YAChD,IAAI,EAAE,CAAC,UAAU,CAAC,QAAQ,CAAC,EAAE,CAAC;gBAC5B,KAAK,CAAC,QAAQ,CAAC,GAAG,EAAE,OAAO,EAAE,EAAE,CAAC,YAAY,CAAC,QAAQ,EAAE,OAAO,CAAC,EAAE,CAAC;YACpE,CAAC;QACH,CAAC;QAED,2BAA2B;QAC3B,MAAM,QAAQ,GAAG,IAAI,CAAC,KAAK,CAAC,EAAE,CAAC,YAAY,CAAC,IAAI,CAAC,IAAI,CAAC,SAAS,EAAE,eAAe,CAAC,EAAE,OAAO,CAAC,CAAC,CAAC;QAC7F,KAAK,CAAC,WAAW,CAAC,GAAG;YACnB,OAAO,EAAE,kBAAkB,CAAC,QAAQ,CAAC;SACtC,CAAC;QAEF,uCAAuC;QACvC,MAAM,UAAU,GAAG,IAAI,CAAC,IAAI,CAAC,SAAS,EAAE,YAAY,CAAC,CAAC;QACtD,MAAM,UAAU,GAAG,IAAI,CAAC,IAAI,CAAC,SAAS,EAAE,YAAY,CAAC,CAAC;QACtD,IAAI,EAAE,CAAC,UAAU,CAAC,UAAU,CAAC,EAAE,CAAC;YAC9B,MAAM,OAAO,GAAG,EAAE,CAAC,YAAY,CAAC,UAAU,EAAE,OAAO,CAAC,CAAC;YACrD,IAAI,OAAO,CAAC,MAAM,IAAI,MAAM,EAAE,CAAC,CAAC,uBAAuB;gBACrD,KAAK,CAAC,YAAY,CAAC,GAAG,EAAE,OAAO,EAAE,CAAC;YACpC,CAAC;QACH,CAAC;QACD,IAAI,EAAE,CAAC,UAAU,CAAC,UAAU,CAAC,EAAE,CAAC;YAC9B,MAAM,OAAO,GAAG,EAAE,CAAC,YAAY,CAAC,UAAU,EAAE,OAAO,CAAC,CAAC;YACrD,IAAI,OAAO,CAAC,MAAM,IAAI,MAAM,EAAE,CAAC;gBAC7B,KAAK,CAAC,YAAY,CAAC,GAAG,EAAE,OAAO,EAAE,CAAC;YACpC,CAAC;QACH,CAAC;QAED,kBAAkB;QAClB,MAAM,QAAQ,GAAG,IAAI,CAAC,SAAS,CAAC;YAC9B,WAAW,EAAE,OAAO,CAAC,WAAW,IAAI,aAAa,QAAQ,CAAC,IAAI,MAAM,QAAQ,CAAC,WAAW,EAAE;YAC1F,MAAM,EAAE,OAAO,CAAC,MAAM,IAAI,KAAK;YAC/B,KAAK;SACN,CAAC,CAAC;QAEH,MAAM,MAAM,GAAG,MAAM,QAAQ,CAAC,8BAA8B,EAAE,QAAQ,EAAE,KAAK,CAAC,CAAC;QAC/E,MAAM,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;QAElC,OAAO;YACL,GAAG,EAAE,MAAM,CAAC,QAAQ;YACpB,MAAM,EAAE,MAAM,CAAC,EAAE;YACjB,MAAM,EAAE,MAAM,CAAC,QAAQ,GAAG,MAAM;SACjC,CAAC;IACJ,CAAC;YAAS,CAAC;QACT,IAAI,UAAU,EAAE,CAAC;YACf,EAAE,CAAC,MAAM,CAAC,UAAU,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC,CAAC;QAC1D,CAAC;IACH,CAAC;AACH,CAAC;AAED,8DAA8D;AAC9D,SAAS,kBAAkB,CAAC,QAAa;IACvC,OAAO,wBAAwB,QAAQ,CAAC,IAAI;;IAE1C,QAAQ,CAAC,WAAW;;;;;;gBAMR,QAAQ,CAAC,IAAI;;;;;;;gBAOb,QAAQ,CAAC,OAAO,CAAC,IAAI,CAAC,GAAG,CAAC;gBAC1B,QAAQ,CAAC,SAAS;eACnB,QAAQ,CAAC,WAAW,CAAC,EAAE,IAAI,QAAQ,CAAC,WAAW,CAAC,IAAI;WACxD,QAAQ,CAAC,WAAW,CAAC,YAAY;eAC7B,QAAQ,CAAC,WAAW;UACzB,QAAQ,CAAC,WAAW,CAAC,UAAU,IAAI,KAAK,MAAM,CAAC,QAAQ,CAAC,WAAW,CAAC,UAAU,IAAI,KAAK,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC;;;;EAI5G,QAAQ,CAAC,WAAW,oBAAoB,CAAC,QAAQ,CAAC,gBAAgB,GAAG,IAAI,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC;;;qEAGlB,QAAQ,CAAC,gBAAgB;CAC7F,CAAC;AACF,CAAC;AAED,SAAS,QAAQ,CAAC,GAAW,EAAE,IAAY,EAAE,KAAa;IACxD,OAAO,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE;QACrC,MAAM,MAAM,GAAG,IAAI,GAAG,CAAC,GAAG,CAAC,CAAC;QAC5B,MAAM,OAAO,GAAG;YACd,QAAQ,EAAE,MAAM,CAAC,QAAQ;YACzB,IAAI,EAAE,GAAG;YACT,IAAI,EAAE,MAAM,CAAC,QAAQ;YACrB,MAAM,EAAE,MAAM;YACd,OAAO,EAAE;gBACP,cAAc,EAAE,kBAAkB;gBAClC,eAAe,EAAE,UAAU,KAAK,EAAE;gBAClC,YAAY,EAAE,cAAc;gBAC5B,QAAQ,EAAE,6BAA6B;gBACvC,gBAAgB,EAAE,MAAM,CAAC,UAAU,CAAC,IAAI,CAAC;aAC1C;SACF,CAAC;QAEF,MAAM,GAAG,GAAG,KAAK,CAAC,OAAO,CAAC,OAAO,EAAE,CAAC,GAAG,EAAE,EAAE;YACzC,IAAI,IAAI,GAAG,EAAE,CAAC;YACd,GAAG,CAAC,EAAE,CAAC,MAAM,EAAE,CAAC,KAAK,EAAE,EAAE,GAAG,IAAI,IAAI,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC;YAC9C,GAAG,CAAC,EAAE,CAAC,KAAK,EAAE,GAAG,EAAE;gBACjB,IAAI,GAAG,CAAC,UAAU,IAAI,GAAG,CAAC,UAAU,IAAI,GAAG,IAAI,GAAG,CAAC,UAAU,GAAG,GAAG,EAAE,CAAC;oBACpE,OAAO,CAAC,IAAI,CAAC,CAAC;gBAChB,CAAC;qBAAM,CAAC;oBACN,MAAM,CAAC,IAAI,KAAK,CAAC,kBAAkB,CAAC,oBAAoB,GAAG,CAAC,UAAU,KAAK,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC;gBACvF,CAAC;YACH,CAAC,CAAC,CAAC;QACL,CAAC,CAAC,CAAC;QAEH,GAAG,CAAC,EAAE,CAAC,OAAO,EAAE,CAAC,GAAG,EAAE,EAAE;YACtB,MAAM,CAAC,IAAI,KAAK,CAAC,kBAAkB,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC;QACrD,CAAC,CAAC,CAAC;QACH,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;QAChB,GAAG,CAAC,GAAG,EAAE,CAAC;IACZ,CAAC,CAAC,CAAC;AACL,CAAC"}

package/dist/utils/archive.d.ts

@@ -1,3 +1,4 @@
+export declare function validateArchiveEntryPath(entryName: string, destDir: string): void;
 /**
  * Compresses a directory into a ZIP archive.
  * @param sourceDir The directory to compress.

package/dist/utils/archive.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"archive.d.ts","sourceRoot":"","sources":["../../src/utils/archive.ts"],"names":[],"mappings":"AAIA;;;;GAIG;AACH,wBAAsB,YAAY,CAAC,SAAS,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC,CAoBpF;AAED;;;;GAIG;AACH,wBAAsB,UAAU,CAAC,OAAO,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC,CAMhF"}
+{"version":3,"file":"archive.d.ts","sourceRoot":"","sources":["../../src/utils/archive.ts"],"names":[],"mappings":"AAUA,wBAAgB,wBAAwB,CAAC,SAAS,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,GAAG,IAAI,CASjF;AAED;;;;GAIG;AACH,wBAAsB,YAAY,CAAC,SAAS,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC,CAoBpF;AAED;;;;GAIG;AACH,wBAAsB,UAAU,CAAC,OAAO,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC,CAqChF"}

package/dist/utils/archive.js

@@ -1,6 +1,20 @@
 import * as fs from 'fs';
+import * as path from 'path';
 import archiver from 'archiver';
 import extract from 'extract-zip';
+import { isPathWithinBoundary } from './security.js';
+const MAX_ARCHIVE_FILES = 10000;
+const MAX_ARCHIVE_UNCOMPRESSED_BYTES = 500 * 1024 * 1024;
+const MAX_SINGLE_FILE_UNCOMPRESSED_BYTES = 100 * 1024 * 1024;
+export function validateArchiveEntryPath(entryName, destDir) {
+    if (!entryName || path.isAbsolute(entryName) || entryName.includes('\0')) {
+        throw new Error(`Invalid archive entry path: ${entryName}`);
+    }
+    const normalized = path.resolve(destDir, entryName);
+    if (!isPathWithinBoundary(normalized, destDir)) {
+        throw new Error(`Path traversal attempt detected: ${entryName}`);
+    }
+}
 /**
  * Compresses a directory into a ZIP archive.
  * @param sourceDir The directory to compress.
@@ -30,7 +44,34 @@ export async function zipDirectory(sourceDir, outPath) {
  */
 export async function extractZip(zipPath, destDir) {
     try {
-        await extract(zipPath, { dir: destDir });
+        const resolvedDest = path.resolve(destDir);
+        let fileCount = 0;
+        let totalSize = 0;
+        await extract(zipPath, {
+            dir: resolvedDest,
+            onEntry: (entry) => {
+                fileCount += 1;
+                if (fileCount > MAX_ARCHIVE_FILES) {
+                    throw new Error('Archive contains too many files');
+                }
+                const entryName = entry.fileName || '';
+                validateArchiveEntryPath(entryName, resolvedDest);
+                const size = typeof entry.uncompressedSize === 'number' ? entry.uncompressedSize : 0;
+                if (size > MAX_SINGLE_FILE_UNCOMPRESSED_BYTES) {
+                    throw new Error(`Archive entry too large: ${entryName}`);
+                }
+                totalSize += size;
+                if (totalSize > MAX_ARCHIVE_UNCOMPRESSED_BYTES) {
+                    throw new Error('Archive uncompressed size limit exceeded');
+                }
+                if (entry.externalFileAttributes !== undefined) {
+                    const mode = (entry.externalFileAttributes >> 16) & 0o170000;
+                    if (mode === 0o120000) {
+                        throw new Error(`Symbolic links are not allowed in archives: ${entryName}`);
+                    }
+                }
+            },
+        });
     }
     catch (err) {
         throw new Error(`Failed to extract artifact: ${err instanceof Error ? err.message : err}`);

package/dist/utils/archive.js.map

@@ -1 +1 @@
-{"version":3,"file":"archive.js","sourceRoot":"","sources":["../../src/utils/archive.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,MAAM,IAAI,CAAC;AACzB,OAAO,QAAQ,MAAM,UAAU,CAAC;AAChC,OAAO,OAAO,MAAM,aAAa,CAAC;AAElC;;;;GAIG;AACH,MAAM,CAAC,KAAK,UAAU,YAAY,CAAC,SAAiB,EAAE,OAAe;IACnE,OAAO,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE;QACrC,MAAM,OAAO,GAAG,QAAQ,CAAC,KAAK,EAAE;YAC9B,IAAI,EAAE,EAAE,KAAK,EAAE,CAAC,EAAE,EAAE,sBAAsB;SAC3C,CAAC,CAAC;QAEH,MAAM,MAAM,GAAG,EAAE,CAAC,iBAAiB,CAAC,OAAO,CAAC,CAAC;QAE7C,MAAM,CAAC,EAAE,CAAC,OAAO,EAAE,GAAG,EAAE;YACtB,OAAO,EAAE,CAAC;QACZ,CAAC,CAAC,CAAC;QAEH,OAAO,CAAC,EAAE,CAAC,OAAO,EAAE,CAAC,GAAG,EAAE,EAAE;YAC1B,MAAM,CAAC,GAAG,CAAC,CAAC;QACd,CAAC,CAAC,CAAC;QAEH,OAAO,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QACrB,OAAO,CAAC,SAAS,CAAC,SAAS,EAAE,KAAK,CAAC,CAAC,CAAC,0CAA0C;QAC/E,OAAO,CAAC,QAAQ,EAAE,CAAC;IACrB,CAAC,CAAC,CAAC;AACL,CAAC;AAED;;;;GAIG;AACH,MAAM,CAAC,KAAK,UAAU,UAAU,CAAC,OAAe,EAAE,OAAe;IAC/D,IAAI,CAAC;QACH,MAAM,OAAO,CAAC,OAAO,EAAE,EAAE,GAAG,EAAE,OAAO,EAAE,CAAC,CAAC;IAC3C,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,MAAM,IAAI,KAAK,CAAC,+BAA+B,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,GAAG,EAAE,CAAC,CAAC;IAC7F,CAAC;AACH,CAAC"}
+{"version":3,"file":"archive.js","sourceRoot":"","sources":["../../src/utils/archive.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,MAAM,IAAI,CAAC;AACzB,OAAO,KAAK,IAAI,MAAM,MAAM,CAAC;AAC7B,OAAO,QAAQ,MAAM,UAAU,CAAC;AAChC,OAAO,OAAO,MAAM,aAAa,CAAC;AAClC,OAAO,EAAE,oBAAoB,EAAE,MAAM,eAAe,CAAC;AAErD,MAAM,iBAAiB,GAAG,KAAK,CAAC;AAChC,MAAM,8BAA8B,GAAG,GAAG,GAAG,IAAI,GAAG,IAAI,CAAC;AACzD,MAAM,kCAAkC,GAAG,GAAG,GAAG,IAAI,GAAG,IAAI,CAAC;AAE7D,MAAM,UAAU,wBAAwB,CAAC,SAAiB,EAAE,OAAe;IACzE,IAAI,CAAC,SAAS,IAAI,IAAI,CAAC,UAAU,CAAC,SAAS,CAAC,IAAI,SAAS,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,CAAC;QACzE,MAAM,IAAI,KAAK,CAAC,+BAA+B,SAAS,EAAE,CAAC,CAAC;IAC9D,CAAC;IAED,MAAM,UAAU,GAAG,IAAI,CAAC,OAAO,CAAC,OAAO,EAAE,SAAS,CAAC,CAAC;IACpD,IAAI,CAAC,oBAAoB,CAAC,UAAU,EAAE,OAAO,CAAC,EAAE,CAAC;QAC/C,MAAM,IAAI,KAAK,CAAC,oCAAoC,SAAS,EAAE,CAAC,CAAC;IACnE,CAAC;AACH,CAAC;AAED;;;;GAIG;AACH,MAAM,CAAC,KAAK,UAAU,YAAY,CAAC,SAAiB,EAAE,OAAe;IACnE,OAAO,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE;QACrC,MAAM,OAAO,GAAG,QAAQ,CAAC,KAAK,EAAE;YAC9B,IAAI,EAAE,EAAE,KAAK,EAAE,CAAC,EAAE,EAAE,sBAAsB;SAC3C,CAAC,CAAC;QAEH,MAAM,MAAM,GAAG,EAAE,CAAC,iBAAiB,CAAC,OAAO,CAAC,CAAC;QAE7C,MAAM,CAAC,EAAE,CAAC,OAAO,EAAE,GAAG,EAAE;YACtB,OAAO,EAAE,CAAC;QACZ,CAAC,CAAC,CAAC;QAEH,OAAO,CAAC,EAAE,CAAC,OAAO,EAAE,CAAC,GAAG,EAAE,EAAE;YAC1B,MAAM,CAAC,GAAG,CAAC,CAAC;QACd,CAAC,CAAC,CAAC;QAEH,OAAO,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QACrB,OAAO,CAAC,SAAS,CAAC,SAAS,EAAE,KAAK,CAAC,CAAC,CAAC,0CAA0C;QAC/E,OAAO,CAAC,QAAQ,EAAE,CAAC;IACrB,CAAC,CAAC,CAAC;AACL,CAAC;AAED;;;;GAIG;AACH,MAAM,CAAC,KAAK,UAAU,UAAU,CAAC,OAAe,EAAE,OAAe;IAC/D,IAAI,CAAC;QACH,MAAM,YAAY,GAAG,IAAI,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC;QAC3C,IAAI,SAAS,GAAG,CAAC,CAAC;QAClB,IAAI,SAAS,GAAG,CAAC,CAAC;QAElB,MAAM,OAAO,CAAC,OAAO,EAAE;YACrB,GAAG,EAAE,YAAY;YACjB,OAAO,EAAE,CAAC,KAAK,EAAE,EAAE;gBACjB,SAAS,IAAI,CAAC,CAAC;gBACf,IAAI,SAAS,GAAG,iBAAiB,EAAE,CAAC;oBAClC,MAAM,IAAI,KAAK,CAAC,iCAAiC,CAAC,CAAC;gBACrD,CAAC;gBAED,MAAM,SAAS,GAAG,KAAK,CAAC,QAAQ,IAAI,EAAE,CAAC;gBACvC,wBAAwB,CAAC,SAAS,EAAE,YAAY,CAAC,CAAC;gBAElD,MAAM,IAAI,GAAG,OAAO,KAAK,CAAC,gBAAgB,KAAK,QAAQ,CAAC,CAAC,CAAC,KAAK,CAAC,gBAAgB,CAAC,CAAC,CAAC,CAAC,CAAC;gBACrF,IAAI,IAAI,GAAG,kCAAkC,EAAE,CAAC;oBAC9C,MAAM,IAAI,KAAK,CAAC,4BAA4B,SAAS,EAAE,CAAC,CAAC;gBAC3D,CAAC;gBACD,SAAS,IAAI,IAAI,CAAC;gBAClB,IAAI,SAAS,GAAG,8BAA8B,EAAE,CAAC;oBAC/C,MAAM,IAAI,KAAK,CAAC,0CAA0C,CAAC,CAAC;gBAC9D,CAAC;gBAED,IAAI,KAAK,CAAC,sBAAsB,KAAK,SAAS,EAAE,CAAC;oBAC/C,MAAM,IAAI,GAAG,CAAC,KAAK,CAAC,sBAAsB,IAAI,EAAE,CAAC,GAAG,QAAQ,CAAC;oBAC7D,IAAI,IAAI,KAAK,QAAQ,EAAE,CAAC;wBACtB,MAAM,IAAI,KAAK,CAAC,+CAA+C,SAAS,EAAE,CAAC,CAAC;oBAC9E,CAAC;gBACH,CAAC;YACH,CAAC;SACF,CAAC,CAAC;IACL,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,MAAM,IAAI,KAAK,CAAC,+BAA+B,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,GAAG,EAAE,CAAC,CAAC;IAC7F,CAAC;AACH,CAAC"}

package/dist/utils/artifact-validation.d.ts

@@ -0,0 +1,7 @@
+import { ArtifactManifest, RunConfig } from '../types/artifact.js';
+import { FailureRecord } from '../types/failure.js';
+export declare function secureJsonParse(raw: string, label: string): unknown;
+export declare function validateArtifactManifest(value: unknown): ArtifactManifest;
+export declare function validateRunConfig(value: unknown): RunConfig;
+export declare function validateFailureRecord(value: unknown): FailureRecord;
+//# sourceMappingURL=artifact-validation.d.ts.map

package/dist/utils/artifact-validation.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"artifact-validation.d.ts","sourceRoot":"","sources":["../../src/utils/artifact-validation.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,gBAAgB,EAAE,SAAS,EAAE,MAAM,sBAAsB,CAAC;AACnE,OAAO,EAAE,aAAa,EAAE,MAAM,qBAAqB,CAAC;AAsJpD,wBAAgB,eAAe,CAAC,GAAG,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,GAAG,OAAO,CAcnE;AAED,wBAAgB,wBAAwB,CAAC,KAAK,EAAE,OAAO,GAAG,gBAAgB,CAgCzE;AAED,wBAAgB,iBAAiB,CAAC,KAAK,EAAE,OAAO,GAAG,SAAS,CAgB3D;AAED,wBAAgB,qBAAqB,CAAC,KAAK,EAAE,OAAO,GAAG,aAAa,CAoBnE"}

package/dist/utils/artifact-validation.js

@@ -0,0 +1,212 @@
+const MAX_JSON_BYTES = 1024 * 1024;
+const MAX_JSON_DEPTH = 32;
+const MAX_COMMAND_ARGS = 256;
+const MAX_STRING_LENGTH = 8192;
+const MANIFEST_KEYS = new Set([
+    'version',
+    'bugproof_version',
+    'name',
+    'description',
+    'captured_at',
+    'captured_on',
+    'command',
+    'working_directory',
+    'exit_code',
+    'duration_ms',
+    'files_count',
+    'files_size_bytes',
+    'secrets_detected',
+    'secrets_skipped',
+]);
+const CAPTURED_ON_KEYS = new Set([
+    'os',
+    'arch',
+    'node_version',
+    'git_commit',
+    'git_branch',
+    'git_dirty',
+]);
+const RUN_CONFIG_KEYS = new Set([
+    'command',
+    'working_directory',
+    'environment',
+    'timeout_ms',
+    'capture_output',
+]);
+const FAILURE_KEYS = new Set([
+    'exit_code',
+    'signal',
+    'stdout_lines',
+    'stderr_lines',
+    'stderr_snippet',
+    'fingerprint',
+    'error_patterns',
+    'duration_ms',
+    'timeout',
+]);
+function ensureObject(value, label) {
+    if (!value || typeof value !== 'object' || Array.isArray(value)) {
+        throw new Error(`${label} must be an object`);
+    }
+    return value;
+}
+function ensureNoUnknownKeys(value, allowed, label) {
+    for (const key of Object.keys(value)) {
+        if (!allowed.has(key)) {
+            throw new Error(`${label} contains unknown field: ${key}`);
+        }
+    }
+}
+function ensureString(value, label) {
+    if (typeof value !== 'string') {
+        throw new Error(`${label} must be a string`);
+    }
+    if (value.length > MAX_STRING_LENGTH) {
+        throw new Error(`${label} exceeds maximum length`);
+    }
+    return value;
+}
+function ensureOptionalString(value, label) {
+    if (value === undefined) {
+        return undefined;
+    }
+    return ensureString(value, label);
+}
+function ensureNumber(value, label) {
+    if (typeof value !== 'number' || !Number.isFinite(value)) {
+        throw new Error(`${label} must be a finite number`);
+    }
+    return value;
+}
+function ensureBoolean(value, label) {
+    if (typeof value !== 'boolean') {
+        throw new Error(`${label} must be a boolean`);
+    }
+    return value;
+}
+function ensureStringArray(value, label, maxItems = MAX_COMMAND_ARGS) {
+    if (!Array.isArray(value)) {
+        throw new Error(`${label} must be an array`);
+    }
+    if (value.length === 0 || value.length > maxItems) {
+        throw new Error(`${label} has invalid number of items`);
+    }
+    return value.map((item, index) => ensureString(item, `${label}[${index}]`));
+}
+function ensureOptionalStringArray(value, label, maxItems = MAX_COMMAND_ARGS) {
+    if (value === undefined) {
+        return [];
+    }
+    if (!Array.isArray(value)) {
+        throw new Error(`${label} must be an array`);
+    }
+    if (value.length > maxItems) {
+        throw new Error(`${label} has too many items`);
+    }
+    return value.map((item, index) => ensureString(item, `${label}[${index}]`));
+}
+function ensurePlainEnvironment(value) {
+    const env = ensureObject(value, 'run.environment');
+    const safe = {};
+    for (const [key, raw] of Object.entries(env)) {
+        if (!key || key.length > 128 || /[\r\n\0]/.test(key)) {
+            throw new Error(`run.environment contains invalid key: ${key}`);
+        }
+        if (key === '__proto__' || key === 'constructor' || key === 'prototype') {
+            throw new Error(`run.environment contains disallowed key: ${key}`);
+        }
+        safe[key] = ensureString(raw, `run.environment.${key}`);
+    }
+    return safe;
+}
+function assertMaxDepth(value, depth = 0) {
+    if (depth > MAX_JSON_DEPTH) {
+        throw new Error('JSON exceeds maximum nesting depth');
+    }
+    if (Array.isArray(value)) {
+        value.forEach((item) => assertMaxDepth(item, depth + 1));
+        return;
+    }
+    if (value && typeof value === 'object') {
+        Object.values(value).forEach((item) => assertMaxDepth(item, depth + 1));
+    }
+}
+export function secureJsonParse(raw, label) {
+    if (raw.length > MAX_JSON_BYTES) {
+        throw new Error(`${label} exceeds maximum size`);
+    }
+    const parsed = JSON.parse(raw, (key, value) => {
+        if (key === '__proto__' || key === 'constructor' || key === 'prototype') {
+            throw new Error(`${label} contains disallowed key: ${key}`);
+        }
+        return value;
+    });
+    assertMaxDepth(parsed);
+    return parsed;
+}
+export function validateArtifactManifest(value) {
+    const manifest = ensureObject(value, 'manifest');
+    ensureNoUnknownKeys(manifest, MANIFEST_KEYS, 'manifest');
+    const capturedOnRaw = ensureObject(manifest.captured_on, 'manifest.captured_on');
+    ensureNoUnknownKeys(capturedOnRaw, CAPTURED_ON_KEYS, 'manifest.captured_on');
+    return {
+        version: ensureString(manifest.version, 'manifest.version'),
+        bugproof_version: ensureString(manifest.bugproof_version, 'manifest.bugproof_version'),
+        name: ensureString(manifest.name, 'manifest.name'),
+        description: ensureString(manifest.description, 'manifest.description'),
+        captured_at: ensureString(manifest.captured_at, 'manifest.captured_at'),
+        captured_on: {
+            os: ensureString(capturedOnRaw.os, 'manifest.captured_on.os'),
+            arch: ensureString(capturedOnRaw.arch, 'manifest.captured_on.arch'),
+            node_version: ensureString(capturedOnRaw.node_version, 'manifest.captured_on.node_version'),
+            git_commit: ensureOptionalString(capturedOnRaw.git_commit, 'manifest.captured_on.git_commit'),
+            git_branch: ensureOptionalString(capturedOnRaw.git_branch, 'manifest.captured_on.git_branch'),
+            git_dirty: capturedOnRaw.git_dirty === undefined
+                ? undefined
+                : ensureBoolean(capturedOnRaw.git_dirty, 'manifest.captured_on.git_dirty'),
+        },
+        command: ensureStringArray(manifest.command, 'manifest.command'),
+        working_directory: ensureString(manifest.working_directory, 'manifest.working_directory'),
+        exit_code: ensureNumber(manifest.exit_code, 'manifest.exit_code'),
+        duration_ms: ensureNumber(manifest.duration_ms, 'manifest.duration_ms'),
+        files_count: ensureNumber(manifest.files_count, 'manifest.files_count'),
+        files_size_bytes: ensureNumber(manifest.files_size_bytes, 'manifest.files_size_bytes'),
+        secrets_detected: ensureBoolean(manifest.secrets_detected, 'manifest.secrets_detected'),
+        secrets_skipped: ensureOptionalStringArray(manifest.secrets_skipped, 'manifest.secrets_skipped'),
+    };
+}
+export function validateRunConfig(value) {
+    const run = ensureObject(value, 'run');
+    ensureNoUnknownKeys(run, RUN_CONFIG_KEYS, 'run');
+    const timeoutMs = ensureNumber(run.timeout_ms, 'run.timeout_ms');
+    if (timeoutMs <= 0 || timeoutMs > 60 * 60 * 1000) {
+        throw new Error('run.timeout_ms out of range');
+    }
+    return {
+        command: ensureStringArray(run.command, 'run.command'),
+        working_directory: ensureString(run.working_directory, 'run.working_directory'),
+        environment: ensurePlainEnvironment(run.environment),
+        timeout_ms: timeoutMs,
+        capture_output: ensureBoolean(run.capture_output, 'run.capture_output'),
+    };
+}
+export function validateFailureRecord(value) {
+    const failure = ensureObject(value, 'failure');
+    ensureNoUnknownKeys(failure, FAILURE_KEYS, 'failure');
+    const signal = failure.signal;
+    if (!(signal === null || typeof signal === 'string')) {
+        throw new Error('failure.signal must be null or string');
+    }
+    return {
+        exit_code: ensureNumber(failure.exit_code, 'failure.exit_code'),
+        signal,
+        stdout_lines: ensureNumber(failure.stdout_lines, 'failure.stdout_lines'),
+        stderr_lines: ensureNumber(failure.stderr_lines, 'failure.stderr_lines'),
+        stderr_snippet: ensureString(failure.stderr_snippet, 'failure.stderr_snippet'),
+        fingerprint: ensureString(failure.fingerprint, 'failure.fingerprint'),
+        error_patterns: ensureOptionalStringArray(failure.error_patterns, 'failure.error_patterns'),
+        duration_ms: ensureNumber(failure.duration_ms, 'failure.duration_ms'),
+        timeout: ensureBoolean(failure.timeout, 'failure.timeout'),
+    };
+}
+//# sourceMappingURL=artifact-validation.js.map

package/dist/utils/artifact-validation.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"artifact-validation.js","sourceRoot":"","sources":["../../src/utils/artifact-validation.ts"],"names":[],"mappings":"AAGA,MAAM,cAAc,GAAG,IAAI,GAAG,IAAI,CAAC;AACnC,MAAM,cAAc,GAAG,EAAE,CAAC;AAC1B,MAAM,gBAAgB,GAAG,GAAG,CAAC;AAC7B,MAAM,iBAAiB,GAAG,IAAI,CAAC;AAE/B,MAAM,aAAa,GAAG,IAAI,GAAG,CAAC;IAC5B,SAAS;IACT,kBAAkB;IAClB,MAAM;IACN,aAAa;IACb,aAAa;IACb,aAAa;IACb,SAAS;IACT,mBAAmB;IACnB,WAAW;IACX,aAAa;IACb,aAAa;IACb,kBAAkB;IAClB,kBAAkB;IAClB,iBAAiB;CAClB,CAAC,CAAC;AAEH,MAAM,gBAAgB,GAAG,IAAI,GAAG,CAAC;IAC/B,IAAI;IACJ,MAAM;IACN,cAAc;IACd,YAAY;IACZ,YAAY;IACZ,WAAW;CACZ,CAAC,CAAC;AAEH,MAAM,eAAe,GAAG,IAAI,GAAG,CAAC;IAC9B,SAAS;IACT,mBAAmB;IACnB,aAAa;IACb,YAAY;IACZ,gBAAgB;CACjB,CAAC,CAAC;AAEH,MAAM,YAAY,GAAG,IAAI,GAAG,CAAC;IAC3B,WAAW;IACX,QAAQ;IACR,cAAc;IACd,cAAc;IACd,gBAAgB;IAChB,aAAa;IACb,gBAAgB;IAChB,aAAa;IACb,SAAS;CACV,CAAC,CAAC;AAEH,SAAS,YAAY,CAAC,KAAc,EAAE,KAAa;IACjD,IAAI,CAAC,KAAK,IAAI,OAAO,KAAK,KAAK,QAAQ,IAAI,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,EAAE,CAAC;QAChE,MAAM,IAAI,KAAK,CAAC,GAAG,KAAK,oBAAoB,CAAC,CAAC;IAChD,CAAC;IACD,OAAO,KAAgC,CAAC;AAC1C,CAAC;AAED,SAAS,mBAAmB,CAAC,KAA8B,EAAE,OAAoB,EAAE,KAAa;IAC9F,KAAK,MAAM,GAAG,IAAI,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,EAAE,CAAC;QACrC,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,GAAG,CAAC,EAAE,CAAC;YACtB,MAAM,IAAI,KAAK,CAAC,GAAG,KAAK,4BAA4B,GAAG,EAAE,CAAC,CAAC;QAC7D,CAAC;IACH,CAAC;AACH,CAAC;AAED,SAAS,YAAY,CAAC,KAAc,EAAE,KAAa;IACjD,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;QAC9B,MAAM,IAAI,KAAK,CAAC,GAAG,KAAK,mBAAmB,CAAC,CAAC;IAC/C,CAAC;IACD,IAAI,KAAK,CAAC,MAAM,GAAG,iBAAiB,EAAE,CAAC;QACrC,MAAM,IAAI,KAAK,CAAC,GAAG,KAAK,yBAAyB,CAAC,CAAC;IACrD,CAAC;IACD,OAAO,KAAK,CAAC;AACf,CAAC;AAED,SAAS,oBAAoB,CAAC,KAAc,EAAE,KAAa;IACzD,IAAI,KAAK,KAAK,SAAS,EAAE,CAAC;QACxB,OAAO,SAAS,CAAC;IACnB,CAAC;IACD,OAAO,YAAY,CAAC,KAAK,EAAE,KAAK,CAAC,CAAC;AACpC,CAAC;AAED,SAAS,YAAY,CAAC,KAAc,EAAE,KAAa;IACjD,IAAI,OAAO,KAAK,KAAK,QAAQ,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,KAAK,CAAC,EAAE,CAAC;QACzD,MAAM,IAAI,KAAK,CAAC,GAAG,KAAK,0BAA0B,CAAC,CAAC;IACtD,CAAC;IACD,OAAO,KAAK,CAAC;AACf,CAAC;AAED,SAAS,aAAa,CAAC,KAAc,EAAE,KAAa;IAClD,IAAI,OAAO,KAAK,KAAK,SAAS,EAAE,CAAC;QAC/B,MAAM,IAAI,KAAK,CAAC,GAAG,KAAK,oBAAoB,CAAC,CAAC;IAChD,CAAC;IACD,OAAO,KAAK,CAAC;AACf,CAAC;AAED,SAAS,iBAAiB,CAAC,KAAc,EAAE,KAAa,EAAE,QAAQ,GAAG,gBAAgB;IACnF,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,EAAE,CAAC;QAC1B,MAAM,IAAI,KAAK,CAAC,GAAG,KAAK,mBAAmB,CAAC,CAAC;IAC/C,CAAC;IACD,IAAI,KAAK,CAAC,MAAM,KAAK,CAAC,IAAI,KAAK,CAAC,MAAM,GAAG,QAAQ,EAAE,CAAC;QAClD,MAAM,IAAI,KAAK,CAAC,GAAG,KAAK,8BAA8B,CAAC,CAAC;IAC1D,CAAC;IACD,OAAO,KAAK,CAAC,GAAG,CAAC,CAAC,IAAI,EAAE,KAAK,EAAE,EAAE,CAAC,YAAY,CAAC,IAAI,EAAE,GAAG,KAAK,IAAI,KAAK,GAAG,CAAC,CAAC,CAAC;AAC9E,CAAC;AAED,SAAS,yBAAyB,CAAC,KAAc,EAAE,KAAa,EAAE,QAAQ,GAAG,gBAAgB;IAC3F,IAAI,KAAK,KAAK,SAAS,EAAE,CAAC;QACxB,OAAO,EAAE,CAAC;IACZ,CAAC;IACD,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,EAAE,CAAC;QAC1B,MAAM,IAAI,KAAK,CAAC,GAAG,KAAK,mBAAmB,CAAC,CAAC;IAC/C,CAAC;IACD,IAAI,KAAK,CAAC,MAAM,GAAG,QAAQ,EAAE,CAAC;QAC5B,MAAM,IAAI,KAAK,CAAC,GAAG,KAAK,qBAAqB,CAAC,CAAC;IACjD,CAAC;IACD,OAAO,KAAK,CAAC,GAAG,CAAC,CAAC,IAAI,EAAE,KAAK,EAAE,EAAE,CAAC,YAAY,CAAC,IAAI,EAAE,GAAG,KAAK,IAAI,KAAK,GAAG,CAAC,CAAC,CAAC;AAC9E,CAAC;AAED,SAAS,sBAAsB,CAAC,KAAc;IAC5C,MAAM,GAAG,GAAG,YAAY,CAAC,KAAK,EAAE,iBAAiB,CAAC,CAAC;IACnD,MAAM,IAAI,GAA2B,EAAE,CAAC;IACxC,KAAK,MAAM,CAAC,GAAG,EAAE,GAAG,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC;QAC7C,IAAI,CAAC,GAAG,IAAI,GAAG,CAAC,MAAM,GAAG,GAAG,IAAI,UAAU,CAAC,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC;YACrD,MAAM,IAAI,KAAK,CAAC,yCAAyC,GAAG,EAAE,CAAC,CAAC;QAClE,CAAC;QACD,IAAI,GAAG,KAAK,WAAW,IAAI,GAAG,KAAK,aAAa,IAAI,GAAG,KAAK,WAAW,EAAE,CAAC;YACxE,MAAM,IAAI,KAAK,CAAC,4CAA4C,GAAG,EAAE,CAAC,CAAC;QACrE,CAAC;QACD,IAAI,CAAC,GAAG,CAAC,GAAG,YAAY,CAAC,GAAG,EAAE,mBAAmB,GAAG,EAAE,CAAC,CAAC;IAC1D,CAAC;IACD,OAAO,IAAI,CAAC;AACd,CAAC;AAED,SAAS,cAAc,CAAC,KAAc,EAAE,KAAK,GAAG,CAAC;IAC/C,IAAI,KAAK,GAAG,cAAc,EAAE,CAAC;QAC3B,MAAM,IAAI,KAAK,CAAC,oCAAoC,CAAC,CAAC;IACxD,CAAC;IACD,IAAI,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,EAAE,CAAC;QACzB,KAAK,CAAC,OAAO,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,cAAc,CAAC,IAAI,EAAE,KAAK,GAAG,CAAC,CAAC,CAAC,CAAC;QACzD,OAAO;IACT,CAAC;IACD,IAAI,KAAK,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;QACvC,MAAM,CAAC,MAAM,CAAC,KAAgC,CAAC,CAAC,OAAO,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,cAAc,CAAC,IAAI,EAAE,KAAK,GAAG,CAAC,CAAC,CAAC,CAAC;IACrG,CAAC;AACH,CAAC;AAED,MAAM,UAAU,eAAe,CAAC,GAAW,EAAE,KAAa;IACxD,IAAI,GAAG,CAAC,MAAM,GAAG,cAAc,EAAE,CAAC;QAChC,MAAM,IAAI,KAAK,CAAC,GAAG,KAAK,uBAAuB,CAAC,CAAC;IACnD,CAAC;IAED,MAAM,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,EAAE,CAAC,GAAW,EAAE,KAAc,EAAE,EAAE;QAC7D,IAAI,GAAG,KAAK,WAAW,IAAI,GAAG,KAAK,aAAa,IAAI,GAAG,KAAK,WAAW,EAAE,CAAC;YACxE,MAAM,IAAI,KAAK,CAAC,GAAG,KAAK,6BAA6B,GAAG,EAAE,CAAC,CAAC;QAC9D,CAAC;QACD,OAAO,KAAK,CAAC;IACf,CAAC,CAAC,CAAC;IAEH,cAAc,CAAC,MAAM,CAAC,CAAC;IACvB,OAAO,MAAM,CAAC;AAChB,CAAC;AAED,MAAM,UAAU,wBAAwB,CAAC,KAAc;IACrD,MAAM,QAAQ,GAAG,YAAY,CAAC,KAAK,EAAE,UAAU,CAAC,CAAC;IACjD,mBAAmB,CAAC,QAAQ,EAAE,aAAa,EAAE,UAAU,CAAC,CAAC;IAEzD,MAAM,aAAa,GAAG,YAAY,CAAC,QAAQ,CAAC,WAAW,EAAE,sBAAsB,CAAC,CAAC;IACjF,mBAAmB,CAAC,aAAa,EAAE,gBAAgB,EAAE,sBAAsB,CAAC,CAAC;IAE7E,OAAO;QACL,OAAO,EAAE,YAAY,CAAC,QAAQ,CAAC,OAAO,EAAE,kBAAkB,CAAC;QAC3D,gBAAgB,EAAE,YAAY,CAAC,QAAQ,CAAC,gBAAgB,EAAE,2BAA2B,CAAC;QACtF,IAAI,EAAE,YAAY,CAAC,QAAQ,CAAC,IAAI,EAAE,eAAe,CAAC;QAClD,WAAW,EAAE,YAAY,CAAC,QAAQ,CAAC,WAAW,EAAE,sBAAsB,CAAC;QACvE,WAAW,EAAE,YAAY,CAAC,QAAQ,CAAC,WAAW,EAAE,sBAAsB,CAAC;QACvE,WAAW,EAAE;YACX,EAAE,EAAE,YAAY,CAAC,aAAa,CAAC,EAAE,EAAE,yBAAyB,CAAC;YAC7D,IAAI,EAAE,YAAY,CAAC,aAAa,CAAC,IAAI,EAAE,2BAA2B,CAAC;YACnE,YAAY,EAAE,YAAY,CAAC,aAAa,CAAC,YAAY,EAAE,mCAAmC,CAAC;YAC3F,UAAU,EAAE,oBAAoB,CAAC,aAAa,CAAC,UAAU,EAAE,iCAAiC,CAAC;YAC7F,UAAU,EAAE,oBAAoB,CAAC,aAAa,CAAC,UAAU,EAAE,iCAAiC,CAAC;YAC7F,SAAS,EAAE,aAAa,CAAC,SAAS,KAAK,SAAS;gBAC9C,CAAC,CAAC,SAAS;gBACX,CAAC,CAAC,aAAa,CAAC,aAAa,CAAC,SAAS,EAAE,gCAAgC,CAAC;SAC7E;QACD,OAAO,EAAE,iBAAiB,CAAC,QAAQ,CAAC,OAAO,EAAE,kBAAkB,CAAC;QAChE,iBAAiB,EAAE,YAAY,CAAC,QAAQ,CAAC,iBAAiB,EAAE,4BAA4B,CAAC;QACzF,SAAS,EAAE,YAAY,CAAC,QAAQ,CAAC,SAAS,EAAE,oBAAoB,CAAC;QACjE,WAAW,EAAE,YAAY,CAAC,QAAQ,CAAC,WAAW,EAAE,sBAAsB,CAAC;QACvE,WAAW,EAAE,YAAY,CAAC,QAAQ,CAAC,WAAW,EAAE,sBAAsB,CAAC;QACvE,gBAAgB,EAAE,YAAY,CAAC,QAAQ,CAAC,gBAAgB,EAAE,2BAA2B,CAAC;QACtF,gBAAgB,EAAE,aAAa,CAAC,QAAQ,CAAC,gBAAgB,EAAE,2BAA2B,CAAC;QACvF,eAAe,EAAE,yBAAyB,CAAC,QAAQ,CAAC,eAAe,EAAE,0BAA0B,CAAC;KACjG,CAAC;AACJ,CAAC;AAED,MAAM,UAAU,iBAAiB,CAAC,KAAc;IAC9C,MAAM,GAAG,GAAG,YAAY,CAAC,KAAK,EAAE,KAAK,CAAC,CAAC;IACvC,mBAAmB,CAAC,GAAG,EAAE,eAAe,EAAE,KAAK,CAAC,CAAC;IAEjD,MAAM,SAAS,GAAG,YAAY,CAAC,GAAG,CAAC,UAAU,EAAE,gBAAgB,CAAC,CAAC;IACjE,IAAI,SAAS,IAAI,CAAC,IAAI,SAAS,GAAG,EAAE,GAAG,EAAE,GAAG,IAAI,EAAE,CAAC;QACjD,MAAM,IAAI,KAAK,CAAC,6BAA6B,CAAC,CAAC;IACjD,CAAC;IAED,OAAO;QACL,OAAO,EAAE,iBAAiB,CAAC,GAAG,CAAC,OAAO,EAAE,aAAa,CAAC;QACtD,iBAAiB,EAAE,YAAY,CAAC,GAAG,CAAC,iBAAiB,EAAE,uBAAuB,CAAC;QAC/E,WAAW,EAAE,sBAAsB,CAAC,GAAG,CAAC,WAAW,CAAC;QACpD,UAAU,EAAE,SAAS;QACrB,cAAc,EAAE,aAAa,CAAC,GAAG,CAAC,cAAc,EAAE,oBAAoB,CAAC;KACxE,CAAC;AACJ,CAAC;AAED,MAAM,UAAU,qBAAqB,CAAC,KAAc;IAClD,MAAM,OAAO,GAAG,YAAY,CAAC,KAAK,EAAE,SAAS,CAAC,CAAC;IAC/C,mBAAmB,CAAC,OAAO,EAAE,YAAY,EAAE,SAAS,CAAC,CAAC;IAEtD,MAAM,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAC9B,IAAI,CAAC,CAAC,MAAM,KAAK,IAAI,IAAI,OAAO,MAAM,KAAK,QAAQ,CAAC,EAAE,CAAC;QACrD,MAAM,IAAI,KAAK,CAAC,uCAAuC,CAAC,CAAC;IAC3D,CAAC;IAED,OAAO;QACL,SAAS,EAAE,YAAY,CAAC,OAAO,CAAC,SAAS,EAAE,mBAAmB,CAAC;QAC/D,MAAM;QACN,YAAY,EAAE,YAAY,CAAC,OAAO,CAAC,YAAY,EAAE,sBAAsB,CAAC;QACxE,YAAY,EAAE,YAAY,CAAC,OAAO,CAAC,YAAY,EAAE,sBAAsB,CAAC;QACxE,cAAc,EAAE,YAAY,CAAC,OAAO,CAAC,cAAc,EAAE,wBAAwB,CAAC;QAC9E,WAAW,EAAE,YAAY,CAAC,OAAO,CAAC,WAAW,EAAE,qBAAqB,CAAC;QACrE,cAAc,EAAE,yBAAyB,CAAC,OAAO,CAAC,cAAc,EAAE,wBAAwB,CAAC;QAC3F,WAAW,EAAE,YAAY,CAAC,OAAO,CAAC,WAAW,EAAE,qBAAqB,CAAC;QACrE,OAAO,EAAE,aAAa,CAAC,OAAO,CAAC,OAAO,EAAE,iBAAiB,CAAC;KAC3D,CAAC;AACJ,CAAC"}

package/dist/utils/dependencies.d.ts

@@ -0,0 +1,18 @@
+/**
+ * Dependency Detection Engine
+ *
+ * Analyzes stderr output to detect missing dependencies and suggest
+ * installation commands. Works across Node.js, Python, Ruby, Go, Rust, and more.
+ */
+export interface MissingDependency {
+    name: string;
+    language: string;
+    installCommand: string;
+    confidence: 'high' | 'medium' | 'low';
+}
+/**
+ * Scans stderr output and detects missing dependencies.
+ * Returns a deduplicated list of dependencies with install commands.
+ */
+export declare function detectMissingDependencies(stderr: string): MissingDependency[];
+//# sourceMappingURL=dependencies.d.ts.map

package/dist/utils/dependencies.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"dependencies.d.ts","sourceRoot":"","sources":["../../src/utils/dependencies.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,MAAM,WAAW,iBAAiB;IAChC,IAAI,EAAE,MAAM,CAAC;IACb,QAAQ,EAAE,MAAM,CAAC;IACjB,cAAc,EAAE,MAAM,CAAC;IACvB,UAAU,EAAE,MAAM,GAAG,QAAQ,GAAG,KAAK,CAAC;CACvC;AAmMD;;;GAGG;AACH,wBAAgB,yBAAyB,CAAC,MAAM,EAAE,MAAM,GAAG,iBAAiB,EAAE,CAwB7E"}