npm - chainwall - Versions diffs - 0.1.0 - Mend

chainwall 0.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (348) hide show

package/LICENSE +21 -0
package/README.md +278 -0
package/commands/security-scan.md +35 -0
package/dist/auditor/access-mapper.d.ts +3 -0
package/dist/auditor/access-mapper.d.ts.map +1 -0
package/dist/auditor/access-mapper.js +15 -0
package/dist/auditor/access-mapper.js.map +1 -0
package/dist/auditor/cli-detector.d.ts +7 -0
package/dist/auditor/cli-detector.d.ts.map +1 -0
package/dist/auditor/cli-detector.js +63 -0
package/dist/auditor/cli-detector.js.map +1 -0
package/dist/auditor/cross-reference.d.ts +4 -0
package/dist/auditor/cross-reference.d.ts.map +1 -0
package/dist/auditor/cross-reference.js +16 -0
package/dist/auditor/cross-reference.js.map +1 -0
package/dist/auditor/env-auditor.d.ts +9 -0
package/dist/auditor/env-auditor.d.ts.map +1 -0
package/dist/auditor/env-auditor.js +83 -0
package/dist/auditor/env-auditor.js.map +1 -0
package/dist/auditor/mcp-analyzer.d.ts +11 -0
package/dist/auditor/mcp-analyzer.d.ts.map +1 -0
package/dist/auditor/mcp-analyzer.js +145 -0
package/dist/auditor/mcp-analyzer.js.map +1 -0
package/dist/auditor/mcp-detector.d.ts +17 -0
package/dist/auditor/mcp-detector.d.ts.map +1 -0
package/dist/auditor/mcp-detector.js +86 -0
package/dist/auditor/mcp-detector.js.map +1 -0
package/dist/auditor/remediation.d.ts +26 -0
package/dist/auditor/remediation.d.ts.map +1 -0
package/dist/auditor/remediation.js +222 -0
package/dist/auditor/remediation.js.map +1 -0
package/dist/auditor/tool-detector.d.ts +15 -0
package/dist/auditor/tool-detector.d.ts.map +1 -0
package/dist/auditor/tool-detector.js +241 -0
package/dist/auditor/tool-detector.js.map +1 -0
package/dist/auditor/types.d.ts +31 -0
package/dist/auditor/types.d.ts.map +1 -0
package/dist/auditor/types.js +2 -0
package/dist/auditor/types.js.map +1 -0
package/dist/auditor/vscode-extension-scanner.d.ts +8 -0
package/dist/auditor/vscode-extension-scanner.d.ts.map +1 -0
package/dist/auditor/vscode-extension-scanner.js +51 -0
package/dist/auditor/vscode-extension-scanner.js.map +1 -0
package/dist/cli.d.ts +3 -0
package/dist/cli.d.ts.map +1 -0
package/dist/cli.js +159 -0
package/dist/cli.js.map +1 -0
package/dist/commands/audit.d.ts +8 -0
package/dist/commands/audit.d.ts.map +1 -0
package/dist/commands/audit.js +151 -0
package/dist/commands/audit.js.map +1 -0
package/dist/commands/init.d.ts +2 -0
package/dist/commands/init.d.ts.map +1 -0
package/dist/commands/init.js +34 -0
package/dist/commands/init.js.map +1 -0
package/dist/commands/remediate-cli.d.ts +3 -0
package/dist/commands/remediate-cli.d.ts.map +1 -0
package/dist/commands/remediate-cli.js +96 -0
package/dist/commands/remediate-cli.js.map +1 -0
package/dist/commands/scan.d.ts +11 -0
package/dist/commands/scan.d.ts.map +1 -0
package/dist/commands/scan.js +138 -0
package/dist/commands/scan.js.map +1 -0
package/dist/commands/watch.d.ts +6 -0
package/dist/commands/watch.d.ts.map +1 -0
package/dist/commands/watch.js +203 -0
package/dist/commands/watch.js.map +1 -0
package/dist/config.d.ts +19 -0
package/dist/config.d.ts.map +1 -0
package/dist/config.js +235 -0
package/dist/config.js.map +1 -0
package/dist/mcp-server/index.d.ts +3 -0
package/dist/mcp-server/index.d.ts.map +1 -0
package/dist/mcp-server/index.js +69 -0
package/dist/mcp-server/index.js.map +1 -0
package/dist/mcp-server/schemas.d.ts +13 -0
package/dist/mcp-server/schemas.d.ts.map +1 -0
package/dist/mcp-server/schemas.js +13 -0
package/dist/mcp-server/schemas.js.map +1 -0
package/dist/mcp-server/tools/audit-status.d.ts +3 -0
package/dist/mcp-server/tools/audit-status.d.ts.map +1 -0
package/dist/mcp-server/tools/audit-status.js +46 -0
package/dist/mcp-server/tools/audit-status.js.map +1 -0
package/dist/mcp-server/tools/check-command.d.ts +4 -0
package/dist/mcp-server/tools/check-command.d.ts.map +1 -0
package/dist/mcp-server/tools/check-command.js +30 -0
package/dist/mcp-server/tools/check-command.js.map +1 -0
package/dist/mcp-server/tools/scan-content.d.ts +4 -0
package/dist/mcp-server/tools/scan-content.d.ts.map +1 -0
package/dist/mcp-server/tools/scan-content.js +18 -0
package/dist/mcp-server/tools/scan-content.js.map +1 -0
package/dist/mcp-server/tools/scan-file.d.ts +4 -0
package/dist/mcp-server/tools/scan-file.d.ts.map +1 -0
package/dist/mcp-server/tools/scan-file.js +48 -0
package/dist/mcp-server/tools/scan-file.js.map +1 -0
package/dist/mcp-server/types.d.ts +15 -0
package/dist/mcp-server/types.d.ts.map +1 -0
package/dist/mcp-server/types.js +2 -0
package/dist/mcp-server/types.js.map +1 -0
package/dist/reporter/audit-report.d.ts +4 -0
package/dist/reporter/audit-report.d.ts.map +1 -0
package/dist/reporter/audit-report.js +186 -0
package/dist/reporter/audit-report.js.map +1 -0
package/dist/reporter/json-report.d.ts +3 -0
package/dist/reporter/json-report.d.ts.map +1 -0
package/dist/reporter/json-report.js +4 -0
package/dist/reporter/json-report.js.map +1 -0
package/dist/reporter/remediation-text.d.ts +3 -0
package/dist/reporter/remediation-text.d.ts.map +1 -0
package/dist/reporter/remediation-text.js +12 -0
package/dist/reporter/remediation-text.js.map +1 -0
package/dist/reporter/risk-scorer.d.ts +8 -0
package/dist/reporter/risk-scorer.d.ts.map +1 -0
package/dist/reporter/risk-scorer.js +40 -0
package/dist/reporter/risk-scorer.js.map +1 -0
package/dist/reporter/sarif-report.d.ts +3 -0
package/dist/reporter/sarif-report.d.ts.map +1 -0
package/dist/reporter/sarif-report.js +80 -0
package/dist/reporter/sarif-report.js.map +1 -0
package/dist/reporter/shared.d.ts +11 -0
package/dist/reporter/shared.d.ts.map +1 -0
package/dist/reporter/shared.js +85 -0
package/dist/reporter/shared.js.map +1 -0
package/dist/reporter/summary-generator.d.ts +16 -0
package/dist/reporter/summary-generator.d.ts.map +1 -0
package/dist/reporter/summary-generator.js +89 -0
package/dist/reporter/summary-generator.js.map +1 -0
package/dist/reporter/terminal-report.d.ts +4 -0
package/dist/reporter/terminal-report.d.ts.map +1 -0
package/dist/reporter/terminal-report.js +135 -0
package/dist/reporter/terminal-report.js.map +1 -0
package/dist/rules/crypto-rules.d.ts +3 -0
package/dist/rules/crypto-rules.d.ts.map +1 -0
package/dist/rules/crypto-rules.js +252 -0
package/dist/rules/crypto-rules.js.map +1 -0
package/dist/rules/default-rules.d.ts +9 -0
package/dist/rules/default-rules.d.ts.map +1 -0
package/dist/rules/default-rules.js +1319 -0
package/dist/rules/default-rules.js.map +1 -0
package/dist/rules/index.d.ts +7 -0
package/dist/rules/index.d.ts.map +1 -0
package/dist/rules/index.js +7 -0
package/dist/rules/index.js.map +1 -0
package/dist/rules/injection-rules.d.ts +8 -0
package/dist/rules/injection-rules.d.ts.map +1 -0
package/dist/rules/injection-rules.js +108 -0
package/dist/rules/injection-rules.js.map +1 -0
package/dist/rules/types.d.ts +52 -0
package/dist/rules/types.d.ts.map +1 -0
package/dist/rules/types.js +2 -0
package/dist/rules/types.js.map +1 -0
package/dist/scanner/filesystem-scanner.d.ts +26 -0
package/dist/scanner/filesystem-scanner.d.ts.map +1 -0
package/dist/scanner/filesystem-scanner.js +369 -0
package/dist/scanner/filesystem-scanner.js.map +1 -0
package/dist/scanner/injection-scanner.d.ts +12 -0
package/dist/scanner/injection-scanner.d.ts.map +1 -0
package/dist/scanner/injection-scanner.js +136 -0
package/dist/scanner/injection-scanner.js.map +1 -0
package/dist/scanner/permission-checker.d.ts +4 -0
package/dist/scanner/permission-checker.d.ts.map +1 -0
package/dist/scanner/permission-checker.js +37 -0
package/dist/scanner/permission-checker.js.map +1 -0
package/dist/scanner/redact.d.ts +3 -0
package/dist/scanner/redact.d.ts.map +1 -0
package/dist/scanner/redact.js +17 -0
package/dist/scanner/redact.js.map +1 -0
package/dist/scanner/rule-engine.d.ts +9 -0
package/dist/scanner/rule-engine.d.ts.map +1 -0
package/dist/scanner/rule-engine.js +129 -0
package/dist/scanner/rule-engine.js.map +1 -0
package/dist/scanner/system-targets.d.ts +17 -0
package/dist/scanner/system-targets.d.ts.map +1 -0
package/dist/scanner/system-targets.js +81 -0
package/dist/scanner/system-targets.js.map +1 -0
package/dist/tui/App.d.ts +6 -0
package/dist/tui/App.d.ts.map +1 -0
package/dist/tui/App.js +224 -0
package/dist/tui/App.js.map +1 -0
package/dist/tui/components/BootSequence.d.ts +6 -0
package/dist/tui/components/BootSequence.d.ts.map +1 -0
package/dist/tui/components/BootSequence.js +40 -0
package/dist/tui/components/BootSequence.js.map +1 -0
package/dist/tui/components/BorderedSection.d.ts +12 -0
package/dist/tui/components/BorderedSection.d.ts.map +1 -0
package/dist/tui/components/BorderedSection.js +7 -0
package/dist/tui/components/BorderedSection.js.map +1 -0
package/dist/tui/components/ErrorBoundary.d.ts +18 -0
package/dist/tui/components/ErrorBoundary.d.ts.map +1 -0
package/dist/tui/components/ErrorBoundary.js +36 -0
package/dist/tui/components/ErrorBoundary.js.map +1 -0
package/dist/tui/components/FirstUseHint.d.ts +7 -0
package/dist/tui/components/FirstUseHint.d.ts.map +1 -0
package/dist/tui/components/FirstUseHint.js +20 -0
package/dist/tui/components/FirstUseHint.js.map +1 -0
package/dist/tui/components/Footer.d.ts +10 -0
package/dist/tui/components/Footer.d.ts.map +1 -0
package/dist/tui/components/Footer.js +51 -0
package/dist/tui/components/Footer.js.map +1 -0
package/dist/tui/components/MetricCard.d.ts +11 -0
package/dist/tui/components/MetricCard.d.ts.map +1 -0
package/dist/tui/components/MetricCard.js +8 -0
package/dist/tui/components/MetricCard.js.map +1 -0
package/dist/tui/components/Panel.d.ts +15 -0
package/dist/tui/components/Panel.d.ts.map +1 -0
package/dist/tui/components/Panel.js +25 -0
package/dist/tui/components/Panel.js.map +1 -0
package/dist/tui/components/RemediationMenu.d.ts +10 -0
package/dist/tui/components/RemediationMenu.d.ts.map +1 -0
package/dist/tui/components/RemediationMenu.js +84 -0
package/dist/tui/components/RemediationMenu.js.map +1 -0
package/dist/tui/components/RiskGauge.d.ts +7 -0
package/dist/tui/components/RiskGauge.d.ts.map +1 -0
package/dist/tui/components/RiskGauge.js +55 -0
package/dist/tui/components/RiskGauge.js.map +1 -0
package/dist/tui/components/ScrollableList.d.ts +11 -0
package/dist/tui/components/ScrollableList.d.ts.map +1 -0
package/dist/tui/components/ScrollableList.js +14 -0
package/dist/tui/components/ScrollableList.js.map +1 -0
package/dist/tui/components/Section.d.ts +9 -0
package/dist/tui/components/Section.d.ts.map +1 -0
package/dist/tui/components/Section.js +7 -0
package/dist/tui/components/Section.js.map +1 -0
package/dist/tui/components/SectionHeader.d.ts +8 -0
package/dist/tui/components/SectionHeader.d.ts.map +1 -0
package/dist/tui/components/SectionHeader.js +15 -0
package/dist/tui/components/SectionHeader.js.map +1 -0
package/dist/tui/components/SeverityBadge.d.ts +5 -0
package/dist/tui/components/SeverityBadge.d.ts.map +1 -0
package/dist/tui/components/SeverityBadge.js +7 -0
package/dist/tui/components/SeverityBadge.js.map +1 -0
package/dist/tui/components/Sidebar.d.ts +2 -0
package/dist/tui/components/Sidebar.d.ts.map +1 -0
package/dist/tui/components/Sidebar.js +40 -0
package/dist/tui/components/Sidebar.js.map +1 -0
package/dist/tui/components/StatusIndicator.d.ts +8 -0
package/dist/tui/components/StatusIndicator.d.ts.map +1 -0
package/dist/tui/components/StatusIndicator.js +15 -0
package/dist/tui/components/StatusIndicator.js.map +1 -0
package/dist/tui/components/Table.d.ts +21 -0
package/dist/tui/components/Table.d.ts.map +1 -0
package/dist/tui/components/Table.js +38 -0
package/dist/tui/components/Table.js.map +1 -0
package/dist/tui/components/Transition.d.ts +8 -0
package/dist/tui/components/Transition.d.ts.map +1 -0
package/dist/tui/components/Transition.js +38 -0
package/dist/tui/components/Transition.js.map +1 -0
package/dist/tui/components/WelcomeScreen.d.ts +6 -0
package/dist/tui/components/WelcomeScreen.d.ts.map +1 -0
package/dist/tui/components/WelcomeScreen.js +14 -0
package/dist/tui/components/WelcomeScreen.js.map +1 -0
package/dist/tui/educational.d.ts +32 -0
package/dist/tui/educational.d.ts.map +1 -0
package/dist/tui/educational.js +117 -0
package/dist/tui/educational.js.map +1 -0
package/dist/tui/hooks/useAudit.d.ts +24 -0
package/dist/tui/hooks/useAudit.d.ts.map +1 -0
package/dist/tui/hooks/useAudit.js +263 -0
package/dist/tui/hooks/useAudit.js.map +1 -0
package/dist/tui/hooks/useConfig.d.ts +18 -0
package/dist/tui/hooks/useConfig.d.ts.map +1 -0
package/dist/tui/hooks/useConfig.js +85 -0
package/dist/tui/hooks/useConfig.js.map +1 -0
package/dist/tui/hooks/useHookStatus.d.ts +10 -0
package/dist/tui/hooks/useHookStatus.d.ts.map +1 -0
package/dist/tui/hooks/useHookStatus.js +59 -0
package/dist/tui/hooks/useHookStatus.js.map +1 -0
package/dist/tui/hooks/useLogs.d.ts +42 -0
package/dist/tui/hooks/useLogs.d.ts.map +1 -0
package/dist/tui/hooks/useLogs.js +105 -0
package/dist/tui/hooks/useLogs.js.map +1 -0
package/dist/tui/hooks/useScan.d.ts +39 -0
package/dist/tui/hooks/useScan.d.ts.map +1 -0
package/dist/tui/hooks/useScan.js +255 -0
package/dist/tui/hooks/useScan.js.map +1 -0
package/dist/tui/hooks/useTerminalSize.d.ts +10 -0
package/dist/tui/hooks/useTerminalSize.d.ts.map +1 -0
package/dist/tui/hooks/useTerminalSize.js +27 -0
package/dist/tui/hooks/useTerminalSize.js.map +1 -0
package/dist/tui/index.d.ts +2 -0
package/dist/tui/index.d.ts.map +1 -0
package/dist/tui/index.js +8 -0
package/dist/tui/index.js.map +1 -0
package/dist/tui/screens/AuditPanel.d.ts +7 -0
package/dist/tui/screens/AuditPanel.d.ts.map +1 -0
package/dist/tui/screens/AuditPanel.js +467 -0
package/dist/tui/screens/AuditPanel.js.map +1 -0
package/dist/tui/screens/LogsPanel.d.ts +2 -0
package/dist/tui/screens/LogsPanel.d.ts.map +1 -0
package/dist/tui/screens/LogsPanel.js +127 -0
package/dist/tui/screens/LogsPanel.js.map +1 -0
package/dist/tui/screens/OverviewPanel.d.ts +2 -0
package/dist/tui/screens/OverviewPanel.d.ts.map +1 -0
package/dist/tui/screens/OverviewPanel.js +84 -0
package/dist/tui/screens/OverviewPanel.js.map +1 -0
package/dist/tui/screens/ScanPanel.d.ts +2 -0
package/dist/tui/screens/ScanPanel.d.ts.map +1 -0
package/dist/tui/screens/ScanPanel.js +188 -0
package/dist/tui/screens/ScanPanel.js.map +1 -0
package/dist/tui/screens/ScanResultsPanel.d.ts +2 -0
package/dist/tui/screens/ScanResultsPanel.d.ts.map +1 -0
package/dist/tui/screens/ScanResultsPanel.js +394 -0
package/dist/tui/screens/ScanResultsPanel.js.map +1 -0
package/dist/tui/screens/SettingsPanel.d.ts +2 -0
package/dist/tui/screens/SettingsPanel.d.ts.map +1 -0
package/dist/tui/screens/SettingsPanel.js +353 -0
package/dist/tui/screens/SettingsPanel.js.map +1 -0
package/dist/tui/state.d.ts +35 -0
package/dist/tui/state.d.ts.map +1 -0
package/dist/tui/state.js +13 -0
package/dist/tui/state.js.map +1 -0
package/dist/tui/theme.d.ts +58 -0
package/dist/tui/theme.d.ts.map +1 -0
package/dist/tui/theme.js +80 -0
package/dist/tui/theme.js.map +1 -0
package/dist/version.d.ts +2 -0
package/dist/version.d.ts.map +1 -0
package/dist/version.js +5 -0
package/dist/version.js.map +1 -0
package/hooks/audit-logger.sh +74 -0
package/hooks/detection-lib.sh +301 -0
package/hooks/git-pre-commit.sh +195 -0
package/hooks/git-pre-push.sh +125 -0
package/hooks/git-safety.sh +152 -0
package/hooks/security-scanner.sh +527 -0
package/install.sh +543 -0
package/package.json +67 -0
package/patterns/credentials.yaml +317 -0
package/patterns/dangerous-commands.yaml +167 -0
package/patterns/pii.yaml +95 -0
package/patterns/prompt-injection.yaml +131 -0
package/patterns/supply-chain.yaml +119 -0
package/rules/AGENTS.md +60 -0
package/rules/SECURITY-RULES.md +177 -0
package/rules/claude.md +9 -0
package/rules/clinerules +29 -0
package/rules/continuerules +29 -0
package/rules/copilot-instructions.md +9 -0
package/rules/cursor-security.mdc +14 -0
package/rules/gemini.md +9 -0
package/rules/kiro-security.md +29 -0
package/rules/roocode-security.md +29 -0
package/rules/trae-security.md +29 -0
package/rules/windsurfrules +9 -0
package/skill/llm-antivirus/SKILL.md +73 -0
package/skill/llm-antivirus/references/threat-patterns.yaml +82 -0
package/skill/llm-antivirus/scripts/security-audit.sh +244 -0
package/uninstall.sh +215 -0

package/LICENSE ADDED Viewed

@@ -0,0 +1,21 @@
+MIT License
+Copyright (c) 2025 consulalialpric
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

package/README.md ADDED Viewed

@@ -0,0 +1,278 @@
+<div align="center">
+<picture>
+  <source media="(prefers-color-scheme: dark)" srcset=".github/images/logo-dark.svg">
+  <source media="(prefers-color-scheme: light)" srcset=".github/images/logo-light.svg">
+  <img alt="ChainWall" src=".github/images/logo-light.svg" width="480">
+</picture>
+<br><br>
+[![CI](https://github.com/consulalialpric/chainwall/actions/workflows/tests.yml/badge.svg)](https://github.com/consulalialpric/chainwall/actions/workflows/tests.yml)
+[![npm version](https://img.shields.io/npm/v/chainwall.svg)](https://www.npmjs.com/package/chainwall)
+[![License: MIT](https://img.shields.io/badge/License-MIT-blue.svg)](LICENSE)
+[![Tests](https://img.shields.io/badge/tests-520_passing-brightgreen?logo=vitest&logoColor=white)](#testing)
+**Antivirus for AI coding agents.**
+Scans your machine, maps which AI tools can reach your secrets, and blocks threats before they happen.
+</div>
+---
+## The Problem
+AI coding agents have broad filesystem access. They can read your AWS credentials, SSH keys, `.env` files, crypto wallets, and browser cookies — most users have no idea how exposed they are.
+A single prompt injection, a hallucinated shell command, or a compromised MCP server turns that access into a breach. The agent doesn't need to be malicious — it just needs to be tricked.
+ChainWall closes the gap. Scan, audit, protect — in under a minute.
+## Quick Start
+```bash
+npm install -g chainwall
+chainwall scan           # find secrets, keys, and PII on your machine
+chainwall audit          # map which AI tools can reach those secrets
+chainwall init           # install real-time protection hooks
+chainwall                # launch interactive dashboard
+```
+<details>
+<summary><b>Install from source (or hooks-only without Node.js)</b></summary>
+<br>
+**Full CLI:**
+```bash
+git clone https://github.com/consulalialpric/chainwall.git
+cd chainwall && npm install && npm run build && npm link
+```
+**Hooks only (bash 3.2 + jq, no Node.js):**
+```bash
+git clone https://github.com/consulalialpric/chainwall.git ~/tools/chainwall
+cd your-project && ~/tools/chainwall/install.sh
+```
+Pure bash, executes in under 50ms, zero network calls.
+</details>
+## Demo
+<p align="center">
+  <a href="https://asciinema.org/a/DASHBOARD_ID">
+    <img src="https://asciinema.org/a/DASHBOARD_ID.svg" width="600" alt="ChainWall Dashboard"/>
+  </a>
+</p>
+> See also: [scan demo](https://asciinema.org/a/SCAN_ID) · [audit demo](https://asciinema.org/a/AUDIT_ID)
+## What It Does
+1. **Scan** — finds secrets, credentials, crypto keys, and PII across your filesystem using 156 regex patterns with entropy validation
+2. **Audit** — detects 18 AI tools on your machine and cross-references their access levels against discovered secrets to build an exposure map
+3. **Protect** — real-time bash hooks intercept dangerous operations before they execute (pre-commit, pre-push, PreToolUse/PostToolUse)
+Both layers are fully independent. Bash hooks work without Node.js. The TypeScript CLI works without hooks.
+## What It Catches
+156 patterns across 8 categories, with entropy validation to reduce false positives.
+| Category | Patterns | Examples |
+|:---------|:--------:|:---------|
+| **Credentials** | 55 | AWS, GitHub, Stripe, OpenAI, Slack, GCP, Azure, Anthropic, Twilio + 20 more |
+| **Private Keys** | 5 | RSA, DSA, EC, OpenSSH, PGP private key headers |
+| **Crypto / Web3** | 26 | BIP39 seeds, ETH/SOL/BTC private keys, exchange APIs, wallet files |
+| **Dangerous Commands** | 26 | `rm -rf`, `curl\|bash`, `chmod 777`, reverse shells, Docker escapes |
+| **PII** | 15 | SSN (with AAA validation), credit cards (Luhn), medical records, IBAN, passports |
+| **Supply Chain** | 16 | Dependency confusion, lifecycle exploits, lock file deletion |
+| **Prompt Injection** | 18 | Instruction override, role confusion, jailbreaks, base64 obfuscation |
+| **Permissions** | 11 | File permission audit: SSH keys, AWS creds, GPG keyrings |
+> 156 compiled rules + 10 contextual injection patterns + 3 shell history patterns loaded separately.
+<details>
+<summary><b>More detection capabilities</b></summary>
+<br>
+- **Environment variable audit** — scans process.env for 33 sensitive key patterns
+- **Prompt injection scanning** — 27 patterns across 19 instruction file types (`.cursorrules`, `CLAUDE.md`, `.windsurfrules`, etc.)
+- **Entropy-based validation** — Shannon entropy filtering on tokens
+- **Base64 obfuscation detection** — catches `base64 -d | bash` and encoded payloads
+- **Docker escape detection** — socket mounts, `--privileged`, host PID/network, `CAP_SYS_ADMIN`
+- **SARIF 2.1.0 export** — `chainwall scan --format sarif` for CI/CD integration
+- **Real-time watch mode** — `chainwall watch` with debounce and content-hash caching
+</details>
+## Supported Tools
+ChainWall detects and audits 18 AI coding tools, grouped by filesystem access level.
+| Access Level | Tools |
+|:-------------|:------|
+| **Full** (any file on disk) | Claude Code, Codex CLI, Aider, Trae IDE, Bolt |
+| **Workspace** (project files) | Cursor, Windsurf, Continue.dev, Gemini Code Assist, Cline, RooCode, Amazon Q, JetBrains AI, Augment, BLACKBOXAI, Qodo Gen, Kiro |
+| **Limited** (open files only) | GitHub Copilot |
+The auditor cross-references each tool's access level against your secrets to show exactly which tools can reach which sensitive files.
+Instruction files are deployed to 11 tools via `chainwall init`.
+## Interactive TUI
+Launch with `chainwall` (no arguments) for a keyboard-driven dashboard.
+- **Overview** — protection status, recent activity, system summary
+- **Scan** — mode selection, grouped results, severity/category filtering, search
+- **Audit** — 7-section accordion (summary, tools, exposure, MCP, CLIs, VS Code, env), remediation actions
+- **Settings** — allowlist/blocklist/skipDirs, toggle protection, global/project scope
+- **Logs** — audit trail with severity filtering and real-time reload
+Keyboard: `1`-`5` switch panels, `p` toggles protection, `?` for help, `q` to quit.
+## Commands
+| Command | Description |
+|:--------|:-----------|
+| `chainwall` | Launch interactive TUI |
+| `chainwall scan [dir]` | Scan for secrets, keys, and PII |
+| `chainwall scan --system` | System credential locations only |
+| `chainwall audit [dir]` | Map AI tool access + cross-reference exposure |
+| `chainwall watch [dir]` | Real-time file monitoring |
+| `chainwall init [dir]` | Install hooks for detected AI tools |
+| `chainwall enable` / `disable` | Toggle real-time protection |
+| `chainwall status` | Show protection status |
+| `chainwall allow <path>` | Add path to allowlist |
+| `chainwall allow --rule <id>` | Disable a detection rule |
+| `chainwall mcp` | Start MCP security server (stdio transport) |
+<details>
+<summary><b>Flags</b></summary>
+<br>
+| Flag | Applies to | Description |
+|:-----|:-----------|:-----------|
+| `--format sarif\|json\|text` | scan | Output format (default: text) |
+| `--json` | audit | Output as JSON |
+| `--crypto-only` | scan | Only run crypto/web3 rules |
+| `--include-tests` | scan | Include test directories (normally skipped) |
+| `--verbose` | scan | Show match details |
+| `--grouped` | scan | Group findings by category |
+| `--remediate` | audit | Interactive remediation prompts |
+| `--deep` | audit | Full recursive home directory walk |
+</details>
+## Configuration
+```
+~/.llm-av/config.json        global (all projects)
+.llm-av/config.json           project (this repo only)
+```
+```jsonc
+{
+  "enabled": true,
+  "allowlist": {
+    "paths": ["test-fixtures/", "vendor/"],
+    "patterns": ["EXAMPLE_KEY"],
+    "rules": ["generic-api-key-assignment"]
+  },
+  "blocklist": {
+    "paths": [".env.production"],
+    "patterns": ["MY_SECRET_PREFIX"]
+  },
+  "skipDirs": ["test-integration", "__vitest__"]
+}
+```
+Blocklist always wins. `LLMAV_SKIP=1` bypasses all checks for one invocation (always logged).
+## How It's Different
+| Feature | ChainWall | git-secrets | truffleHog | gitleaks |
+|:--------|:---------:|:-----------:|:----------:|:--------:|
+| Real-time hook blocking | Yes | No | No | No |
+| Pre-commit scanning | Yes | Yes | Yes | Yes |
+| AI tool access auditing | Yes | No | No | No |
+| MCP server detection | Yes | No | No | No |
+| Instruction file deployment | 11 tools | No | No | No |
+| Entropy validation | Yes | No | Yes | Yes |
+| PII detection | Yes | No | No | No |
+| Crypto/Web3 patterns | 26 | No | Limited | Limited |
+| SARIF export | Yes | No | Yes | Yes |
+| Interactive TUI | Yes | No | No | No |
+| Zero-dependency hooks | bash + jq | bash + git | Go binary | Go binary |
+**git-secrets** catches secrets at commit time but has no awareness of AI tools, MCP servers, or real-time interception. **truffleHog** and **gitleaks** are excellent for scanning repos and CI pipelines but don't operate in real-time, don't audit which AI tools can reach your secrets, and don't deploy protective instruction files.
+ChainWall is designed specifically for the AI coding agent threat model — where the risk isn't just committing a secret, but an agent reading, exfiltrating, or acting on it.
+## MCP Server
+ChainWall includes an MCP server that AI agents can call for security checks:
+| Tool | Description |
+|:-----|:-----------|
+| `scan_file` | Scan a file for secrets (restricted to cwd) |
+| `scan_content` | Scan arbitrary text for secrets |
+| `check_command` | Check if a shell command is dangerous |
+| `audit_status` | Get current protection status |
+Start with `chainwall mcp` or configure in Claude Desktop / Cursor settings via `chainwall init`.
+This is separate from the **MCP detector** — which audits MCP servers already configured on your system, analyzes their source code for risky capabilities (filesystem, exec, network), and computes risk scores.
+<details>
+<summary><b>Architecture</b></summary>
+<br>
+```
+hooks/              Bash hooks (PreToolUse/PostToolUse, git pre-commit/pre-push)
+patterns/           YAML pattern databases (5 files)
+rules/              Instruction files for 11 AI tools
+src/
+  commands/         scan, audit, init, watch, allow handlers
+  rules/            156 patterns as pre-compiled RegExp
+  scanner/          Async filesystem walker + rule engine
+  auditor/          18-tool detector + MCP/CLI/VS Code scanner
+  reporter/         Terminal, JSON, SARIF, audit reports
+  tui/              Interactive TUI (Ink + React)
+  mcp-server/       4-tool MCP server (stdio transport)
+test/               Vitest tests (20 files)
+tests/              Bash test suite (11 suites)
+install.sh          Universal installer
+```
+The two layers (bash hooks + TypeScript CLI) are fully independent. Bash hooks need only bash 3.2 + jq. The CLI needs Node.js 18.17+. Use either or both.
+</details>
+## Testing
+```bash
+./tests/run-all.sh    # 223 bash hook tests (11 suites)
+npm test              # 297 vitest tests (20 test files)
+```
+**520 tests total**, all passing.
+## Requirements
+| Component | Requires |
+|:----------|:---------|
+| Bash hooks | bash 3.2+, jq |
+| ChainWall CLI | Node.js 18.17+ |
+## Contributing
+See [CONTRIBUTING.md](docs/CONTRIBUTING.md).
+## License
+MIT

package/commands/security-scan.md ADDED Viewed

@@ -0,0 +1,35 @@
+# /security-scan
+Run a comprehensive security audit of the project.
+## Instructions
+Execute the security audit script and report findings:
+```bash
+./skill/llm-antivirus/scripts/security-audit.sh
+```
+After the scan completes:
+1. **If findings are detected** (exit code 1):
+   - List each finding grouped by severity (Critical, High, Medium, Low)
+   - For each Critical/High finding, explain the risk and suggest remediation
+   - Check if any findings are false positives based on file context
+2. **If no findings** (exit code 0):
+   - Confirm the project is clean
+   - Mention which categories were scanned
+3. **Always include**:
+   - Total finding count by severity
+   - Reminder to check `.llm-av/config.json` for allowlist if false positives exist
+## Arguments
+- No arguments: scans entire project
+- Path argument: scans specific directory or file
+  ```
+  /security-scan src/
+  /security-scan config/database.yml
+  ```

package/dist/auditor/access-mapper.d.ts ADDED Viewed

@@ -0,0 +1,3 @@
+import type { AITool } from './types.js';
+export declare function canToolAccessPath(tool: AITool, filePath: string, workspaceRoot: string): boolean;
+//# sourceMappingURL=access-mapper.d.ts.map

package/dist/auditor/access-mapper.d.ts.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"access-mapper.d.ts","sourceRoot":"","sources":["../../src/auditor/access-mapper.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,YAAY,CAAC;AAEzC,wBAAgB,iBAAiB,CAAC,IAAI,EAAE,MAAM,EAAE,QAAQ,EAAE,MAAM,EAAE,aAAa,EAAE,MAAM,GAAG,OAAO,CAYhG"}

package/dist/auditor/access-mapper.js ADDED Viewed

@@ -0,0 +1,15 @@
+import { resolve, sep } from 'node:path';
+export function canToolAccessPath(tool, filePath, workspaceRoot) {
+    switch (tool.accessLevel) {
+        case 'full':
+            return true;
+        case 'workspace': {
+            const wsRoot = resolve(workspaceRoot);
+            const resolved = resolve(filePath);
+            return resolved === wsRoot || resolved.startsWith(wsRoot + sep);
+        }
+        case 'limited':
+            return false;
+    }
+}
+//# sourceMappingURL=access-mapper.js.map

package/dist/auditor/access-mapper.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"access-mapper.js","sourceRoot":"","sources":["../../src/auditor/access-mapper.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,OAAO,EAAE,GAAG,EAAE,MAAM,WAAW,CAAC;AAGzC,MAAM,UAAU,iBAAiB,CAAC,IAAY,EAAE,QAAgB,EAAE,aAAqB;IACrF,QAAQ,IAAI,CAAC,WAAW,EAAE,CAAC;QACzB,KAAK,MAAM;YACT,OAAO,IAAI,CAAC;QACd,KAAK,WAAW,CAAC,CAAC,CAAC;YACjB,MAAM,MAAM,GAAG,OAAO,CAAC,aAAa,CAAC,CAAC;YACtC,MAAM,QAAQ,GAAG,OAAO,CAAC,QAAQ,CAAC,CAAC;YACnC,OAAO,QAAQ,KAAK,MAAM,IAAI,QAAQ,CAAC,UAAU,CAAC,MAAM,GAAG,GAAG,CAAC,CAAC;QAClE,CAAC;QACD,KAAK,SAAS;YACZ,OAAO,KAAK,CAAC;IACjB,CAAC;AACH,CAAC"}

package/dist/auditor/cli-detector.d.ts ADDED Viewed

@@ -0,0 +1,7 @@
+export interface DetectedCLI {
+    name: string;
+    path: string;
+    source: 'which' | 'npm-global';
+}
+export declare function detectAICLIs(): DetectedCLI[];
+//# sourceMappingURL=cli-detector.d.ts.map

package/dist/auditor/cli-detector.d.ts.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"cli-detector.d.ts","sourceRoot":"","sources":["../../src/auditor/cli-detector.ts"],"names":[],"mappings":"AAEA,MAAM,WAAW,WAAW;IAC1B,IAAI,EAAE,MAAM,CAAC;IACb,IAAI,EAAE,MAAM,CAAC;IACb,MAAM,EAAE,OAAO,GAAG,YAAY,CAAC;CAChC;AA+CD,wBAAgB,YAAY,IAAI,WAAW,EAAE,CAoB5C"}

package/dist/auditor/cli-detector.js ADDED Viewed

@@ -0,0 +1,63 @@
+import { execFileSync } from 'node:child_process';
+const KNOWN_AI_CLIS = ['aider', 'codex', 'cursor', 'continue', 'cline', 'claude', 'amazon-q', 'augment', 'bolt'];
+// Normalize npm package names to their CLI/canonical names for dedup
+const NAME_MAP = {
+    'aider-chat': 'aider',
+    '@anthropic-ai/claude-code': 'claude',
+    '@openai/codex': 'codex',
+};
+function tryWhich(name) {
+    try {
+        const result = execFileSync('which', [name], { timeout: 5000, encoding: 'utf-8' }).trim();
+        return result || null;
+    }
+    catch {
+        return null;
+    }
+}
+const KNOWN_NPM_AI_PACKAGES = [
+    '@anthropic-ai/claude-code',
+    '@openai/codex',
+    'aider-chat',
+    'cline',
+    'augment',
+    'bolt',
+];
+function tryNpmGlobal() {
+    const clis = [];
+    try {
+        const raw = execFileSync('npm', ['list', '-g', '--depth=0', '--json'], { timeout: 5000, encoding: 'utf-8' });
+        const parsed = JSON.parse(raw);
+        if (!parsed.dependencies)
+            return clis;
+        for (const pkg of KNOWN_NPM_AI_PACKAGES) {
+            if (pkg in parsed.dependencies) {
+                clis.push({ name: pkg, path: 'npm-global', source: 'npm-global' });
+            }
+        }
+    }
+    catch {
+        // npm not available or timeout
+    }
+    return clis;
+}
+export function detectAICLIs() {
+    const clis = [];
+    for (const name of KNOWN_AI_CLIS) {
+        const path = tryWhich(name);
+        if (path) {
+            clis.push({ name, path, source: 'which' });
+        }
+    }
+    clis.push(...tryNpmGlobal());
+    // Deduplicate by canonical name (normalizes npm packages to CLI names)
+    const seen = new Set();
+    return clis.filter((cli) => {
+        const canonical = NAME_MAP[cli.name] ?? cli.name;
+        if (seen.has(canonical))
+            return false;
+        seen.add(canonical);
+        return true;
+    });
+}
+//# sourceMappingURL=cli-detector.js.map

package/dist/auditor/cli-detector.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"cli-detector.js","sourceRoot":"","sources":["../../src/auditor/cli-detector.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,YAAY,EAAE,MAAM,oBAAoB,CAAC;AAQlD,MAAM,aAAa,GAAG,CAAC,OAAO,EAAE,OAAO,EAAE,QAAQ,EAAE,UAAU,EAAE,OAAO,EAAE,QAAQ,EAAE,UAAU,EAAE,SAAS,EAAE,MAAM,CAAC,CAAC;AAEjH,qEAAqE;AACrE,MAAM,QAAQ,GAA2B;IACvC,YAAY,EAAE,OAAO;IACrB,2BAA2B,EAAE,QAAQ;IACrC,eAAe,EAAE,OAAO;CACzB,CAAC;AAEF,SAAS,QAAQ,CAAC,IAAY;IAC5B,IAAI,CAAC;QACH,MAAM,MAAM,GAAG,YAAY,CAAC,OAAO,EAAE,CAAC,IAAI,CAAC,EAAE,EAAE,OAAO,EAAE,IAAI,EAAE,QAAQ,EAAE,OAAO,EAAE,CAAC,CAAC,IAAI,EAAE,CAAC;QAC1F,OAAO,MAAM,IAAI,IAAI,CAAC;IACxB,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,IAAI,CAAC;IACd,CAAC;AACH,CAAC;AAED,MAAM,qBAAqB,GAAG;IAC5B,2BAA2B;IAC3B,eAAe;IACf,YAAY;IACZ,OAAO;IACP,SAAS;IACT,MAAM;CACP,CAAC;AAEF,SAAS,YAAY;IACnB,MAAM,IAAI,GAAkB,EAAE,CAAC;IAC/B,IAAI,CAAC;QACH,MAAM,GAAG,GAAG,YAAY,CAAC,KAAK,EAAE,CAAC,MAAM,EAAE,IAAI,EAAE,WAAW,EAAE,QAAQ,CAAC,EAAE,EAAE,OAAO,EAAE,IAAI,EAAE,QAAQ,EAAE,OAAO,EAAE,CAAC,CAAC;QAC7G,MAAM,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,CAA+C,CAAC;QAC7E,IAAI,CAAC,MAAM,CAAC,YAAY;YAAE,OAAO,IAAI,CAAC;QAEtC,KAAK,MAAM,GAAG,IAAI,qBAAqB,EAAE,CAAC;YACxC,IAAI,GAAG,IAAI,MAAM,CAAC,YAAY,EAAE,CAAC;gBAC/B,IAAI,CAAC,IAAI,CAAC,EAAE,IAAI,EAAE,GAAG,EAAE,IAAI,EAAE,YAAY,EAAE,MAAM,EAAE,YAAY,EAAE,CAAC,CAAC;YACrE,CAAC;QACH,CAAC;IACH,CAAC;IAAC,MAAM,CAAC;QACP,+BAA+B;IACjC,CAAC;IACD,OAAO,IAAI,CAAC;AACd,CAAC;AAED,MAAM,UAAU,YAAY;IAC1B,MAAM,IAAI,GAAkB,EAAE,CAAC;IAE/B,KAAK,MAAM,IAAI,IAAI,aAAa,EAAE,CAAC;QACjC,MAAM,IAAI,GAAG,QAAQ,CAAC,IAAI,CAAC,CAAC;QAC5B,IAAI,IAAI,EAAE,CAAC;YACT,IAAI,CAAC,IAAI,CAAC,EAAE,IAAI,EAAE,IAAI,EAAE,MAAM,EAAE,OAAO,EAAE,CAAC,CAAC;QAC7C,CAAC;IACH,CAAC;IAED,IAAI,CAAC,IAAI,CAAC,GAAG,YAAY,EAAE,CAAC,CAAC;IAE7B,uEAAuE;IACvE,MAAM,IAAI,GAAG,IAAI,GAAG,EAAU,CAAC;IAC/B,OAAO,IAAI,CAAC,MAAM,CAAC,CAAC,GAAG,EAAE,EAAE;QACzB,MAAM,SAAS,GAAG,QAAQ,CAAC,GAAG,CAAC,IAAI,CAAC,IAAI,GAAG,CAAC,IAAI,CAAC;QACjD,IAAI,IAAI,CAAC,GAAG,CAAC,SAAS,CAAC;YAAE,OAAO,KAAK,CAAC;QACtC,IAAI,CAAC,GAAG,CAAC,SAAS,CAAC,CAAC;QACpB,OAAO,IAAI,CAAC;IACd,CAAC,CAAC,CAAC;AACL,CAAC"}

package/dist/auditor/cross-reference.d.ts ADDED Viewed

@@ -0,0 +1,4 @@
+import type { ScanFinding } from '../rules/types.js';
+import type { AITool, ToolExposure } from './types.js';
+export declare function crossReference(tools: AITool[], findings: ScanFinding[], workspaceRoot: string): ToolExposure[];
+//# sourceMappingURL=cross-reference.d.ts.map

package/dist/auditor/cross-reference.d.ts.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"cross-reference.d.ts","sourceRoot":"","sources":["../../src/auditor/cross-reference.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,WAAW,EAAY,MAAM,mBAAmB,CAAC;AAC/D,OAAO,KAAK,EAAE,MAAM,EAAE,YAAY,EAAE,MAAM,YAAY,CAAC;AAKvD,wBAAgB,cAAc,CAC5B,KAAK,EAAE,MAAM,EAAE,EACf,QAAQ,EAAE,WAAW,EAAE,EACvB,aAAa,EAAE,MAAM,GACpB,YAAY,EAAE,CAehB"}

package/dist/auditor/cross-reference.js ADDED Viewed

@@ -0,0 +1,16 @@
+import { canToolAccessPath } from './access-mapper.js';
+const ACCESS_ORDER = { full: 0, workspace: 1, limited: 2 };
+export function crossReference(tools, findings, workspaceRoot) {
+    const exposures = [];
+    for (const tool of tools) {
+        const exposed = findings.filter((f) => canToolAccessPath(tool, f.filePath, workspaceRoot));
+        const counts = { critical: 0, high: 0, medium: 0, low: 0 };
+        for (const f of exposed) {
+            counts[f.severity]++;
+        }
+        exposures.push({ tool, exposedFindings: exposed, counts });
+    }
+    exposures.sort((a, b) => ACCESS_ORDER[a.tool.accessLevel] - ACCESS_ORDER[b.tool.accessLevel]);
+    return exposures;
+}
+//# sourceMappingURL=cross-reference.js.map

package/dist/auditor/cross-reference.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"cross-reference.js","sourceRoot":"","sources":["../../src/auditor/cross-reference.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,iBAAiB,EAAE,MAAM,oBAAoB,CAAC;AAEvD,MAAM,YAAY,GAAG,EAAE,IAAI,EAAE,CAAC,EAAE,SAAS,EAAE,CAAC,EAAE,OAAO,EAAE,CAAC,EAAW,CAAC;AAEpE,MAAM,UAAU,cAAc,CAC5B,KAAe,EACf,QAAuB,EACvB,aAAqB;IAErB,MAAM,SAAS,GAAmB,EAAE,CAAC;IAErC,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;QACzB,MAAM,OAAO,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,iBAAiB,CAAC,IAAI,EAAE,CAAC,CAAC,QAAQ,EAAE,aAAa,CAAC,CAAC,CAAC;QAC3F,MAAM,MAAM,GAA6B,EAAE,QAAQ,EAAE,CAAC,EAAE,IAAI,EAAE,CAAC,EAAE,MAAM,EAAE,CAAC,EAAE,GAAG,EAAE,CAAC,EAAE,CAAC;QACrF,KAAK,MAAM,CAAC,IAAI,OAAO,EAAE,CAAC;YACxB,MAAM,CAAC,CAAC,CAAC,QAAQ,CAAC,EAAE,CAAC;QACvB,CAAC;QACD,SAAS,CAAC,IAAI,CAAC,EAAE,IAAI,EAAE,eAAe,EAAE,OAAO,EAAE,MAAM,EAAE,CAAC,CAAC;IAC7D,CAAC;IAED,SAAS,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,YAAY,CAAC,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,GAAG,YAAY,CAAC,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC,CAAC;IAE9F,OAAO,SAAS,CAAC;AACnB,CAAC"}

package/dist/auditor/env-auditor.d.ts ADDED Viewed

@@ -0,0 +1,9 @@
+import type { Severity } from '../rules/types.js';
+export interface EnvExposure {
+    key: string;
+    severity: Severity;
+    reason: string;
+    valueHint: string;
+}
+export declare function auditEnvironment(env?: Record<string, string | undefined>): EnvExposure[];
+//# sourceMappingURL=env-auditor.d.ts.map

package/dist/auditor/env-auditor.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"env-auditor.d.ts","sourceRoot":"","sources":["../../src/auditor/env-auditor.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,QAAQ,EAAE,MAAM,mBAAmB,CAAC;AAElD,MAAM,WAAW,WAAW;IAC1B,GAAG,EAAE,MAAM,CAAC;IACZ,QAAQ,EAAE,QAAQ,CAAC;IACnB,MAAM,EAAE,MAAM,CAAC;IACf,SAAS,EAAE,MAAM,CAAC;CACnB;AA8CD,wBAAgB,gBAAgB,CAAC,GAAG,GAAE,MAAM,CAAC,MAAM,EAAE,MAAM,GAAG,SAAS,CAAe,GAAG,WAAW,EAAE,CA6CrG"}

package/dist/auditor/env-auditor.js ADDED Viewed

@@ -0,0 +1,83 @@
+// Sensitive key patterns — ordered by severity
+const SENSITIVE_KEY_PATTERNS = [
+    // Critical: known secret env vars
+    { regex: /^(AWS_SECRET_ACCESS_KEY|AWS_SESSION_TOKEN)$/i, severity: 'critical', reason: 'AWS credential' },
+    { regex: /^(OPENAI_API_KEY|ANTHROPIC_API_KEY|GOOGLE_API_KEY)$/i, severity: 'critical', reason: 'AI provider API key' },
+    { regex: /^(GITHUB_TOKEN|GH_TOKEN|GITLAB_TOKEN)$/i, severity: 'critical', reason: 'Git provider token' },
+    { regex: /^(STRIPE_SECRET_KEY|STRIPE_API_KEY)$/i, severity: 'critical', reason: 'Payment provider key' },
+    { regex: /^(DATABASE_URL|MONGODB_URI|REDIS_URL)$/i, severity: 'critical', reason: 'Database connection string' },
+    { regex: /^(SLACK_TOKEN|SLACK_BOT_TOKEN|SLACK_WEBHOOK_URL)$/i, severity: 'high', reason: 'Slack credential' },
+    { regex: /^(SENDGRID_API_KEY|MAILGUN_API_KEY)$/i, severity: 'high', reason: 'Email service key' },
+    { regex: /^(TWILIO_AUTH_TOKEN|TWILIO_API_KEY)$/i, severity: 'high', reason: 'Twilio credential' },
+    { regex: /^(NPM_TOKEN|NPM_AUTH_TOKEN)$/i, severity: 'high', reason: 'Package registry token' },
+    { regex: /^(DOCKER_PASSWORD|DOCKER_AUTH)$/i, severity: 'high', reason: 'Docker credential' },
+    { regex: /^(SUPABASE_SERVICE_ROLE_KEY|FIREBASE_TOKEN)$/i, severity: 'high', reason: 'Cloud service key' },
+    { regex: /^(VERCEL_TOKEN|NETLIFY_AUTH_TOKEN|HEROKU_API_KEY)$/i, severity: 'high', reason: 'Platform token' },
+    // High: generic patterns for secrets
+    { regex: /_SECRET$/i, severity: 'high', reason: 'Variable name ends with _SECRET' },
+    { regex: /_API_KEY$/i, severity: 'high', reason: 'Variable name ends with _API_KEY' },
+    { regex: /_TOKEN$/i, severity: 'medium', reason: 'Variable name ends with _TOKEN' },
+    { regex: /_PASSWORD$/i, severity: 'high', reason: 'Variable name contains password' },
+    { regex: /^(SECRET|TOKEN|PASSWORD|PRIVATE_KEY)$/i, severity: 'high', reason: 'Generic secret variable name' },
+    { regex: /_PRIVATE_KEY$/i, severity: 'critical', reason: 'Private key in environment' },
+    // Medium: access key IDs (not secret but sensitive)
+    { regex: /^AWS_ACCESS_KEY_ID$/i, severity: 'medium', reason: 'AWS access key ID (not secret but sensitive)' },
+    { regex: /_CLIENT_SECRET$/i, severity: 'high', reason: 'OAuth client secret' },
+];
+// Value patterns that indicate real secrets (not placeholders)
+const VALUE_PATTERNS = [
+    { regex: /^sk-[a-zA-Z0-9]{20,}/, severity: 'critical', reason: 'OpenAI/Stripe key pattern in value' },
+    { regex: /^sk-ant-[a-zA-Z0-9_-]{20,}/, severity: 'critical', reason: 'Anthropic key pattern in value' },
+    { regex: /^ghp_[a-zA-Z0-9]{20,}/, severity: 'critical', reason: 'GitHub PAT in value' },
+    { regex: /^xox[pboa]-/, severity: 'critical', reason: 'Slack token in value' },
+    { regex: /^AKIA[0-9A-Z]{16}/, severity: 'critical', reason: 'AWS access key in value' },
+    { regex: /^SG\.[a-zA-Z0-9_-]{22}\./, severity: 'critical', reason: 'SendGrid key in value' },
+];
+function getValueHint(value) {
+    if (value.length <= 8)
+        return '[set]';
+    return value.substring(0, 4) + '...';
+}
+export function auditEnvironment(env = process.env) {
+    const exposures = [];
+    const seen = new Set();
+    for (const [key, value] of Object.entries(env)) {
+        if (!value || value.length === 0)
+            continue;
+        // Check key patterns
+        for (const pattern of SENSITIVE_KEY_PATTERNS) {
+            if (pattern.regex.test(key)) {
+                if (!seen.has(key)) {
+                    seen.add(key);
+                    exposures.push({
+                        key,
+                        severity: pattern.severity,
+                        reason: pattern.reason,
+                        valueHint: getValueHint(value),
+                    });
+                }
+                break; // first match wins (highest priority)
+            }
+        }
+        // Check value patterns (only if key wasn't already matched)
+        if (!seen.has(key)) {
+            for (const pattern of VALUE_PATTERNS) {
+                if (pattern.regex.test(value)) {
+                    seen.add(key);
+                    exposures.push({
+                        key,
+                        severity: pattern.severity,
+                        reason: pattern.reason,
+                        valueHint: getValueHint(value),
+                    });
+                    break;
+                }
+            }
+        }
+    }
+    // Sort by severity
+    const order = { critical: 0, high: 1, medium: 2, low: 3 };
+    exposures.sort((a, b) => order[a.severity] - order[b.severity]);
+    return exposures;
+}
+//# sourceMappingURL=env-auditor.js.map

package/dist/auditor/env-auditor.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"env-auditor.js","sourceRoot":"","sources":["../../src/auditor/env-auditor.ts"],"names":[],"mappings":"AASA,+CAA+C;AAC/C,MAAM,sBAAsB,GAA4D;IACtF,kCAAkC;IAClC,EAAE,KAAK,EAAE,8CAA8C,EAAE,QAAQ,EAAE,UAAU,EAAE,MAAM,EAAE,gBAAgB,EAAE;IACzG,EAAE,KAAK,EAAE,sDAAsD,EAAE,QAAQ,EAAE,UAAU,EAAE,MAAM,EAAE,qBAAqB,EAAE;IACtH,EAAE,KAAK,EAAE,yCAAyC,EAAE,QAAQ,EAAE,UAAU,EAAE,MAAM,EAAE,oBAAoB,EAAE;IACxG,EAAE,KAAK,EAAE,uCAAuC,EAAE,QAAQ,EAAE,UAAU,EAAE,MAAM,EAAE,sBAAsB,EAAE;IACxG,EAAE,KAAK,EAAE,yCAAyC,EAAE,QAAQ,EAAE,UAAU,EAAE,MAAM,EAAE,4BAA4B,EAAE;IAChH,EAAE,KAAK,EAAE,oDAAoD,EAAE,QAAQ,EAAE,MAAM,EAAE,MAAM,EAAE,kBAAkB,EAAE;IAC7G,EAAE,KAAK,EAAE,uCAAuC,EAAE,QAAQ,EAAE,MAAM,EAAE,MAAM,EAAE,mBAAmB,EAAE;IACjG,EAAE,KAAK,EAAE,uCAAuC,EAAE,QAAQ,EAAE,MAAM,EAAE,MAAM,EAAE,mBAAmB,EAAE;IACjG,EAAE,KAAK,EAAE,+BAA+B,EAAE,QAAQ,EAAE,MAAM,EAAE,MAAM,EAAE,wBAAwB,EAAE;IAC9F,EAAE,KAAK,EAAE,kCAAkC,EAAE,QAAQ,EAAE,MAAM,EAAE,MAAM,EAAE,mBAAmB,EAAE;IAC5F,EAAE,KAAK,EAAE,+CAA+C,EAAE,QAAQ,EAAE,MAAM,EAAE,MAAM,EAAE,mBAAmB,EAAE;IACzG,EAAE,KAAK,EAAE,qDAAqD,EAAE,QAAQ,EAAE,MAAM,EAAE,MAAM,EAAE,gBAAgB,EAAE;IAE5G,qCAAqC;IACrC,EAAE,KAAK,EAAE,WAAW,EAAE,QAAQ,EAAE,MAAM,EAAE,MAAM,EAAE,iCAAiC,EAAE;IACnF,EAAE,KAAK,EAAE,YAAY,EAAE,QAAQ,EAAE,MAAM,EAAE,MAAM,EAAE,kCAAkC,EAAE;IACrF,EAAE,KAAK,EAAE,UAAU,EAAE,QAAQ,EAAE,QAAQ,EAAE,MAAM,EAAE,gCAAgC,EAAE;IACnF,EAAE,KAAK,EAAE,aAAa,EAAE,QAAQ,EAAE,MAAM,EAAE,MAAM,EAAE,iCAAiC,EAAE;IACrF,EAAE,KAAK,EAAE,wCAAwC,EAAE,QAAQ,EAAE,MAAM,EAAE,MAAM,EAAE,8BAA8B,EAAE;IAC7G,EAAE,KAAK,EAAE,gBAAgB,EAAE,QAAQ,EAAE,UAAU,EAAE,MAAM,EAAE,4BAA4B,EAAE;IAEvF,oDAAoD;IACpD,EAAE,KAAK,EAAE,sBAAsB,EAAE,QAAQ,EAAE,QAAQ,EAAE,MAAM,EAAE,8CAA8C,EAAE;IAC7G,EAAE,KAAK,EAAE,kBAAkB,EAAE,QAAQ,EAAE,MAAM,EAAE,MAAM,EAAE,qBAAqB,EAAE;CAC/E,CAAC;AAEF,+DAA+D;AAC/D,MAAM,cAAc,GAA4D;IAC9E,EAAE,KAAK,EAAE,sBAAsB,EAAE,QAAQ,EAAE,UAAU,EAAE,MAAM,EAAE,oCAAoC,EAAE;IACrG,EAAE,KAAK,EAAE,4BAA4B,EAAE,QAAQ,EAAE,UAAU,EAAE,MAAM,EAAE,gCAAgC,EAAE;IACvG,EAAE,KAAK,EAAE,uBAAuB,EAAE,QAAQ,EAAE,UAAU,EAAE,MAAM,EAAE,qBAAqB,EAAE;IACvF,EAAE,KAAK,EAAE,aAAa,EAAE,QAAQ,EAAE,UAAU,EAAE,MAAM,EAAE,sBAAsB,EAAE;IAC9E,EAAE,KAAK,EAAE,mBAAmB,EAAE,QAAQ,EAAE,UAAU,EAAE,MAAM,EAAE,yBAAyB,EAAE;IACvF,EAAE,KAAK,EAAE,0BAA0B,EAAE,QAAQ,EAAE,UAAU,EAAE,MAAM,EAAE,uBAAuB,EAAE;CAC7F,CAAC;AAEF,SAAS,YAAY,CAAC,KAAa;IACjC,IAAI,KAAK,CAAC,MAAM,IAAI,CAAC;QAAE,OAAO,OAAO,CAAC;IACtC,OAAO,KAAK,CAAC,SAAS,CAAC,CAAC,EAAE,CAAC,CAAC,GAAG,KAAK,CAAC;AACvC,CAAC;AAED,MAAM,UAAU,gBAAgB,CAAC,MAA0C,OAAO,CAAC,GAAG;IACpF,MAAM,SAAS,GAAkB,EAAE,CAAC;IACpC,MAAM,IAAI,GAAG,IAAI,GAAG,EAAU,CAAC;IAE/B,KAAK,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC;QAC/C,IAAI,CAAC,KAAK,IAAI,KAAK,CAAC,MAAM,KAAK,CAAC;YAAE,SAAS;QAE3C,qBAAqB;QACrB,KAAK,MAAM,OAAO,IAAI,sBAAsB,EAAE,CAAC;YAC7C,IAAI,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC;gBAC5B,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC,EAAE,CAAC;oBACnB,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;oBACd,SAAS,CAAC,IAAI,CAAC;wBACb,GAAG;wBACH,QAAQ,EAAE,OAAO,CAAC,QAAQ;wBAC1B,MAAM,EAAE,OAAO,CAAC,MAAM;wBACtB,SAAS,EAAE,YAAY,CAAC,KAAK,CAAC;qBAC/B,CAAC,CAAC;gBACL,CAAC;gBACD,MAAM,CAAC,sCAAsC;YAC/C,CAAC;QACH,CAAC;QAED,4DAA4D;QAC5D,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC,EAAE,CAAC;YACnB,KAAK,MAAM,OAAO,IAAI,cAAc,EAAE,CAAC;gBACrC,IAAI,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,KAAK,CAAC,EAAE,CAAC;oBAC9B,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;oBACd,SAAS,CAAC,IAAI,CAAC;wBACb,GAAG;wBACH,QAAQ,EAAE,OAAO,CAAC,QAAQ;wBAC1B,MAAM,EAAE,OAAO,CAAC,MAAM;wBACtB,SAAS,EAAE,YAAY,CAAC,KAAK,CAAC;qBAC/B,CAAC,CAAC;oBACH,MAAM;gBACR,CAAC;YACH,CAAC;QACH,CAAC;IACH,CAAC;IAED,mBAAmB;IACnB,MAAM,KAAK,GAA6B,EAAE,QAAQ,EAAE,CAAC,EAAE,IAAI,EAAE,CAAC,EAAE,MAAM,EAAE,CAAC,EAAE,GAAG,EAAE,CAAC,EAAE,CAAC;IACpF,SAAS,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,KAAK,CAAC,CAAC,CAAC,QAAQ,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC;IAEhE,OAAO,SAAS,CAAC;AACnB,CAAC"}

package/dist/auditor/mcp-analyzer.d.ts ADDED Viewed

@@ -0,0 +1,11 @@
+import type { MCPServer } from './mcp-detector.js';
+export interface MCPAnalysis {
+    riskScore: number;
+    riskLabel: string;
+    toolNames: string[];
+    resourceNames: string[];
+    capabilities: string[];
+    analysisMethod: 'source' | 'args-only';
+}
+export declare function analyzeMCPServer(server: MCPServer, serverDef?: Record<string, unknown>): MCPAnalysis;
+//# sourceMappingURL=mcp-analyzer.d.ts.map

package/dist/auditor/mcp-analyzer.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"mcp-analyzer.d.ts","sourceRoot":"","sources":["../../src/auditor/mcp-analyzer.ts"],"names":[],"mappings":"AAEA,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,mBAAmB,CAAC;AAEnD,MAAM,WAAW,WAAW;IAC1B,SAAS,EAAE,MAAM,CAAC;IAClB,SAAS,EAAE,MAAM,CAAC;IAClB,SAAS,EAAE,MAAM,EAAE,CAAC;IACpB,aAAa,EAAE,MAAM,EAAE,CAAC;IACxB,YAAY,EAAE,MAAM,EAAE,CAAC;IACvB,cAAc,EAAE,QAAQ,GAAG,WAAW,CAAC;CACxC;AAmGD,wBAAgB,gBAAgB,CAAC,MAAM,EAAE,SAAS,EAAE,SAAS,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAAG,WAAW,CA2DpG"}