chainwall 0.1.0

package/dist/auditor/tool-detector.js

@@ -0,0 +1,241 @@
+import { existsSync, readdirSync } from 'node:fs';
+import { join, dirname, basename } from 'node:path';
+import { homedir, platform } from 'node:os';
+function expandPath(template) {
+    const home = homedir();
+    let result = template.replace(/^~\//, home + '/');
+    result = result.replace(/%USERPROFILE%/g, home);
+    result = result.replace(/%APPDATA%/g, join(home, 'AppData', 'Roaming'));
+    return result;
+}
+export const TOOL_DEFINITIONS = [
+    {
+        name: 'Claude Code',
+        accessLevel: 'full',
+        description: 'Can read/write any file on this machine',
+        paths: {
+            darwin: ['~/.claude/'],
+            linux: ['~/.claude/'],
+            win32: ['%USERPROFILE%\\.claude\\'],
+        },
+    },
+    {
+        name: 'Codex CLI',
+        accessLevel: 'full',
+        description: 'Can read/write any file on this machine',
+        paths: {
+            darwin: ['~/.codex/', '~/.config/openai/'],
+            linux: ['~/.codex/', '~/.config/openai/'],
+            win32: ['%USERPROFILE%\\.codex\\', '%APPDATA%\\openai\\'],
+        },
+    },
+    {
+        name: 'Aider',
+        accessLevel: 'full',
+        description: 'Can read/write any file on this machine',
+        paths: {
+            darwin: ['~/.aider.conf.yml', '~/.aider/'],
+            linux: ['~/.aider.conf.yml', '~/.aider/'],
+            win32: ['%USERPROFILE%\\.aider\\'],
+        },
+    },
+    {
+        name: 'Cursor',
+        accessLevel: 'workspace',
+        description: 'Can read/write files in open workspace',
+        paths: {
+            darwin: ['~/.cursor/', '~/Library/Application Support/Cursor/'],
+            linux: ['~/.cursor/', '~/.config/Cursor/'],
+            win32: ['%USERPROFILE%\\.cursor\\', '%APPDATA%\\Cursor\\'],
+        },
+    },
+    {
+        name: 'Windsurf',
+        accessLevel: 'workspace',
+        description: 'Can read/write files in open workspace',
+        paths: {
+            darwin: ['~/.codeium/', '~/Library/Application Support/Windsurf/'],
+            linux: ['~/.codeium/', '~/.config/Windsurf/'],
+            win32: ['%USERPROFILE%\\.codeium\\', '%APPDATA%\\Windsurf\\'],
+        },
+    },
+    {
+        name: 'Continue.dev',
+        accessLevel: 'workspace',
+        description: 'Can read/write files in open workspace',
+        paths: {
+            darwin: ['~/.continue/'],
+            linux: ['~/.continue/'],
+            win32: ['%USERPROFILE%\\.continue\\'],
+        },
+    },
+    {
+        name: 'Gemini Code Assist',
+        accessLevel: 'workspace',
+        description: 'Can read/write files in open workspace',
+        paths: {
+            darwin: ['~/.config/google-cloud/'],
+            linux: ['~/.config/google-cloud/'],
+            win32: ['%APPDATA%\\google-cloud\\'],
+        },
+    },
+    {
+        name: 'GitHub Copilot',
+        accessLevel: 'limited',
+        description: 'Can see open files and nearby context only',
+        paths: {
+            darwin: ['~/.config/github-copilot/'],
+            linux: ['~/.config/github-copilot/'],
+            win32: ['%APPDATA%\\github-copilot\\'],
+        },
+    },
+    {
+        name: 'Cline',
+        accessLevel: 'workspace',
+        description: 'Can read/write files in open workspace',
+        paths: {
+            darwin: ['~/.vscode/extensions/saoudrizwan.claude-dev-*'],
+            linux: ['~/.vscode/extensions/saoudrizwan.claude-dev-*'],
+            win32: ['%USERPROFILE%\\.vscode\\extensions\\saoudrizwan.claude-dev-*'],
+        },
+    },
+    {
+        name: 'RooCode',
+        accessLevel: 'workspace',
+        description: 'Can read/write files in open workspace',
+        paths: {
+            darwin: ['~/.vscode/extensions/rooveterinaryinc.roo-cline-*'],
+            linux: ['~/.vscode/extensions/rooveterinaryinc.roo-cline-*'],
+            win32: ['%USERPROFILE%\\.vscode\\extensions\\rooveterinaryinc.roo-cline-*'],
+        },
+    },
+    {
+        name: 'BLACKBOXAI',
+        accessLevel: 'workspace',
+        description: 'Can read/write files in open workspace',
+        paths: {
+            darwin: ['~/.vscode/extensions/blackbox-ai.blackbox-*'],
+            linux: ['~/.vscode/extensions/blackbox-ai.blackbox-*'],
+            win32: ['%USERPROFILE%\\.vscode\\extensions\\blackbox-ai.blackbox-*'],
+        },
+    },
+    {
+        name: 'Qodo Gen',
+        accessLevel: 'workspace',
+        description: 'Can read/write files in open workspace',
+        paths: {
+            darwin: ['~/.vscode/extensions/qodo-gen.qodo-gen-*'],
+            linux: ['~/.vscode/extensions/qodo-gen.qodo-gen-*'],
+            win32: ['%USERPROFILE%\\.vscode\\extensions\\qodo-gen.qodo-gen-*'],
+        },
+    },
+    {
+        name: 'Trae IDE',
+        accessLevel: 'full',
+        description: 'Can read/write any file on this machine',
+        paths: {
+            darwin: ['~/.trae/'],
+            linux: ['~/.trae/'],
+            win32: ['%USERPROFILE%\\.trae\\'],
+        },
+    },
+    {
+        name: 'Kiro',
+        accessLevel: 'workspace',
+        description: 'Can read/write files in open workspace',
+        paths: {
+            darwin: ['~/.kiro/'],
+            linux: ['~/.kiro/'],
+            win32: ['%USERPROFILE%\\.kiro\\'],
+        },
+    },
+    {
+        name: 'Amazon Q',
+        accessLevel: 'workspace',
+        description: 'Can read/write files in open workspace + AWS integration',
+        paths: {
+            darwin: ['~/.aws/amazonq/', '~/Library/Application Support/amazon-q/'],
+            linux: ['~/.aws/amazonq/', '~/.config/amazon-q/'],
+            win32: ['%USERPROFILE%\\.aws\\amazonq\\', '%APPDATA%\\amazon-q\\'],
+        },
+    },
+    {
+        name: 'JetBrains AI',
+        accessLevel: 'workspace',
+        description: 'Can read/write files in open workspace via IDE',
+        paths: {
+            darwin: ['~/Library/Application Support/JetBrains/'],
+            linux: ['~/.config/JetBrains/', '~/.local/share/JetBrains/'],
+            win32: ['%APPDATA%\\JetBrains\\'],
+        },
+    },
+    {
+        name: 'Augment',
+        accessLevel: 'workspace',
+        description: 'Can read/write files in open workspace',
+        paths: {
+            darwin: ['~/.augment/'],
+            linux: ['~/.augment/', '~/.config/augment/'],
+            win32: ['%USERPROFILE%\\.augment\\', '%APPDATA%\\augment\\'],
+        },
+    },
+    {
+        name: 'Bolt',
+        accessLevel: 'full',
+        description: 'Can read/write any file + terminal access',
+        paths: {
+            darwin: ['~/.bolt/'],
+            linux: ['~/.bolt/', '~/.config/bolt/'],
+            win32: ['%USERPROFILE%\\.bolt\\', '%APPDATA%\\bolt\\'],
+        },
+    },
+];
+function matchGlobPath(expanded) {
+    if (!expanded.includes('*')) {
+        return existsSync(expanded) ? [expanded] : [];
+    }
+    // Glob: check parent dir and filter by prefix (assumes wildcard at end of pattern)
+    const dir = dirname(expanded);
+    const pattern = basename(expanded);
+    const prefix = pattern.slice(0, pattern.indexOf('*'));
+    try {
+        if (!existsSync(dir))
+            return [];
+        const entries = readdirSync(dir);
+        const matches = [];
+        for (const entry of entries) {
+            if (entry.startsWith(prefix)) {
+                matches.push(join(dir, entry));
+            }
+        }
+        return matches;
+    }
+    catch {
+        return [];
+    }
+}
+export function detectInstalledTools() {
+    const plat = platform();
+    const tools = [];
+    for (const def of TOOL_DEFINITIONS) {
+        const templates = def.paths[plat];
+        if (!templates)
+            continue;
+        const foundPaths = [];
+        for (const tpl of templates) {
+            const expanded = expandPath(tpl);
+            const matches = matchGlobPath(expanded);
+            foundPaths.push(...matches);
+        }
+        if (foundPaths.length > 0) {
+            tools.push({
+                name: def.name,
+                accessLevel: def.accessLevel,
+                configPaths: foundPaths,
+                description: def.description,
+            });
+        }
+    }
+    return tools;
+}
+//# sourceMappingURL=tool-detector.js.map

package/dist/auditor/tool-detector.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"tool-detector.js","sourceRoot":"","sources":["../../src/auditor/tool-detector.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAE,WAAW,EAAE,MAAM,SAAS,CAAC;AAClD,OAAO,EAAE,IAAI,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,WAAW,CAAC;AACpD,OAAO,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,SAAS,CAAC;AAc5C,SAAS,UAAU,CAAC,QAAgB;IAClC,MAAM,IAAI,GAAG,OAAO,EAAE,CAAC;IACvB,IAAI,MAAM,GAAG,QAAQ,CAAC,OAAO,CAAC,MAAM,EAAE,IAAI,GAAG,GAAG,CAAC,CAAC;IAClD,MAAM,GAAG,MAAM,CAAC,OAAO,CAAC,gBAAgB,EAAE,IAAI,CAAC,CAAC;IAChD,MAAM,GAAG,MAAM,CAAC,OAAO,CAAC,YAAY,EAAE,IAAI,CAAC,IAAI,EAAE,SAAS,EAAE,SAAS,CAAC,CAAC,CAAC;IACxE,OAAO,MAAM,CAAC;AAChB,CAAC;AAED,MAAM,CAAC,MAAM,gBAAgB,GAAqB;IAChD;QACE,IAAI,EAAE,aAAa;QACnB,WAAW,EAAE,MAAM;QACnB,WAAW,EAAE,yCAAyC;QACtD,KAAK,EAAE;YACL,MAAM,EAAE,CAAC,YAAY,CAAC;YACtB,KAAK,EAAE,CAAC,YAAY,CAAC;YACrB,KAAK,EAAE,CAAC,0BAA0B,CAAC;SACpC;KACF;IACD;QACE,IAAI,EAAE,WAAW;QACjB,WAAW,EAAE,MAAM;QACnB,WAAW,EAAE,yCAAyC;QACtD,KAAK,EAAE;YACL,MAAM,EAAE,CAAC,WAAW,EAAE,mBAAmB,CAAC;YAC1C,KAAK,EAAE,CAAC,WAAW,EAAE,mBAAmB,CAAC;YACzC,KAAK,EAAE,CAAC,yBAAyB,EAAE,qBAAqB,CAAC;SAC1D;KACF;IACD;QACE,IAAI,EAAE,OAAO;QACb,WAAW,EAAE,MAAM;QACnB,WAAW,EAAE,yCAAyC;QACtD,KAAK,EAAE;YACL,MAAM,EAAE,CAAC,mBAAmB,EAAE,WAAW,CAAC;YAC1C,KAAK,EAAE,CAAC,mBAAmB,EAAE,WAAW,CAAC;YACzC,KAAK,EAAE,CAAC,yBAAyB,CAAC;SACnC;KACF;IACD;QACE,IAAI,EAAE,QAAQ;QACd,WAAW,EAAE,WAAW;QACxB,WAAW,EAAE,wCAAwC;QACrD,KAAK,EAAE;YACL,MAAM,EAAE,CAAC,YAAY,EAAE,uCAAuC,CAAC;YAC/D,KAAK,EAAE,CAAC,YAAY,EAAE,mBAAmB,CAAC;YAC1C,KAAK,EAAE,CAAC,0BAA0B,EAAE,qBAAqB,CAAC;SAC3D;KACF;IACD;QACE,IAAI,EAAE,UAAU;QAChB,WAAW,EAAE,WAAW;QACxB,WAAW,EAAE,wCAAwC;QACrD,KAAK,EAAE;YACL,MAAM,EAAE,CAAC,aAAa,EAAE,yCAAyC,CAAC;YAClE,KAAK,EAAE,CAAC,aAAa,EAAE,qBAAqB,CAAC;YAC7C,KAAK,EAAE,CAAC,2BAA2B,EAAE,uBAAuB,CAAC;SAC9D;KACF;IACD;QACE,IAAI,EAAE,cAAc;QACpB,WAAW,EAAE,WAAW;QACxB,WAAW,EAAE,wCAAwC;QACrD,KAAK,EAAE;YACL,MAAM,EAAE,CAAC,cAAc,CAAC;YACxB,KAAK,EAAE,CAAC,cAAc,CAAC;YACvB,KAAK,EAAE,CAAC,4BAA4B,CAAC;SACtC;KACF;IACD;QACE,IAAI,EAAE,oBAAoB;QAC1B,WAAW,EAAE,WAAW;QACxB,WAAW,EAAE,wCAAwC;QACrD,KAAK,EAAE;YACL,MAAM,EAAE,CAAC,yBAAyB,CAAC;YACnC,KAAK,EAAE,CAAC,yBAAyB,CAAC;YAClC,KAAK,EAAE,CAAC,2BAA2B,CAAC;SACrC;KACF;IACD;QACE,IAAI,EAAE,gBAAgB;QACtB,WAAW,EAAE,SAAS;QACtB,WAAW,EAAE,4CAA4C;QACzD,KAAK,EAAE;YACL,MAAM,EAAE,CAAC,2BAA2B,CAAC;YACrC,KAAK,EAAE,CAAC,2BAA2B,CAAC;YACpC,KAAK,EAAE,CAAC,6BAA6B,CAAC;SACvC;KACF;IACD;QACE,IAAI,EAAE,OAAO;QACb,WAAW,EAAE,WAAW;QACxB,WAAW,EAAE,wCAAwC;QACrD,KAAK,EAAE;YACL,MAAM,EAAE,CAAC,+CAA+C,CAAC;YACzD,KAAK,EAAE,CAAC,+CAA+C,CAAC;YACxD,KAAK,EAAE,CAAC,8DAA8D,CAAC;SACxE;KACF;IACD;QACE,IAAI,EAAE,SAAS;QACf,WAAW,EAAE,WAAW;QACxB,WAAW,EAAE,wCAAwC;QACrD,KAAK,EAAE;YACL,MAAM,EAAE,CAAC,mDAAmD,CAAC;YAC7D,KAAK,EAAE,CAAC,mDAAmD,CAAC;YAC5D,KAAK,EAAE,CAAC,kEAAkE,CAAC;SAC5E;KACF;IACD;QACE,IAAI,EAAE,YAAY;QAClB,WAAW,EAAE,WAAW;QACxB,WAAW,EAAE,wCAAwC;QACrD,KAAK,EAAE;YACL,MAAM,EAAE,CAAC,6CAA6C,CAAC;YACvD,KAAK,EAAE,CAAC,6CAA6C,CAAC;YACtD,KAAK,EAAE,CAAC,4DAA4D,CAAC;SACtE;KACF;IACD;QACE,IAAI,EAAE,UAAU;QAChB,WAAW,EAAE,WAAW;QACxB,WAAW,EAAE,wCAAwC;QACrD,KAAK,EAAE;YACL,MAAM,EAAE,CAAC,0CAA0C,CAAC;YACpD,KAAK,EAAE,CAAC,0CAA0C,CAAC;YACnD,KAAK,EAAE,CAAC,yDAAyD,CAAC;SACnE;KACF;IACD;QACE,IAAI,EAAE,UAAU;QAChB,WAAW,EAAE,MAAM;QACnB,WAAW,EAAE,yCAAyC;QACtD,KAAK,EAAE;YACL,MAAM,EAAE,CAAC,UAAU,CAAC;YACpB,KAAK,EAAE,CAAC,UAAU,CAAC;YACnB,KAAK,EAAE,CAAC,wBAAwB,CAAC;SAClC;KACF;IACD;QACE,IAAI,EAAE,MAAM;QACZ,WAAW,EAAE,WAAW;QACxB,WAAW,EAAE,wCAAwC;QACrD,KAAK,EAAE;YACL,MAAM,EAAE,CAAC,UAAU,CAAC;YACpB,KAAK,EAAE,CAAC,UAAU,CAAC;YACnB,KAAK,EAAE,CAAC,wBAAwB,CAAC;SAClC;KACF;IACD;QACE,IAAI,EAAE,UAAU;QAChB,WAAW,EAAE,WAAW;QACxB,WAAW,EAAE,0DAA0D;QACvE,KAAK,EAAE;YACL,MAAM,EAAE,CAAC,iBAAiB,EAAE,yCAAyC,CAAC;YACtE,KAAK,EAAE,CAAC,iBAAiB,EAAE,qBAAqB,CAAC;YACjD,KAAK,EAAE,CAAC,gCAAgC,EAAE,uBAAuB,CAAC;SACnE;KACF;IACD;QACE,IAAI,EAAE,cAAc;QACpB,WAAW,EAAE,WAAW;QACxB,WAAW,EAAE,gDAAgD;QAC7D,KAAK,EAAE;YACL,MAAM,EAAE,CAAC,0CAA0C,CAAC;YACpD,KAAK,EAAE,CAAC,sBAAsB,EAAE,2BAA2B,CAAC;YAC5D,KAAK,EAAE,CAAC,wBAAwB,CAAC;SAClC;KACF;IACD;QACE,IAAI,EAAE,SAAS;QACf,WAAW,EAAE,WAAW;QACxB,WAAW,EAAE,wCAAwC;QACrD,KAAK,EAAE;YACL,MAAM,EAAE,CAAC,aAAa,CAAC;YACvB,KAAK,EAAE,CAAC,aAAa,EAAE,oBAAoB,CAAC;YAC5C,KAAK,EAAE,CAAC,2BAA2B,EAAE,sBAAsB,CAAC;SAC7D;KACF;IACD;QACE,IAAI,EAAE,MAAM;QACZ,WAAW,EAAE,MAAM;QACnB,WAAW,EAAE,2CAA2C;QACxD,KAAK,EAAE;YACL,MAAM,EAAE,CAAC,UAAU,CAAC;YACpB,KAAK,EAAE,CAAC,UAAU,EAAE,iBAAiB,CAAC;YACtC,KAAK,EAAE,CAAC,wBAAwB,EAAE,mBAAmB,CAAC;SACvD;KACF;CACF,CAAC;AAEF,SAAS,aAAa,CAAC,QAAgB;IACrC,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC,GAAG,CAAC,EAAE,CAAC;QAC5B,OAAO,UAAU,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC;IAChD,CAAC;IAED,mFAAmF;IACnF,MAAM,GAAG,GAAG,OAAO,CAAC,QAAQ,CAAC,CAAC;IAC9B,MAAM,OAAO,GAAG,QAAQ,CAAC,QAAQ,CAAC,CAAC;IACnC,MAAM,MAAM,GAAG,OAAO,CAAC,KAAK,CAAC,CAAC,EAAE,OAAO,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC;IAEtD,IAAI,CAAC;QACH,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC;YAAE,OAAO,EAAE,CAAC;QAChC,MAAM,OAAO,GAAG,WAAW,CAAC,GAAG,CAAC,CAAC;QACjC,MAAM,OAAO,GAAa,EAAE,CAAC;QAC7B,KAAK,MAAM,KAAK,IAAI,OAAO,EAAE,CAAC;YAC5B,IAAI,KAAK,CAAC,UAAU,CAAC,MAAM,CAAC,EAAE,CAAC;gBAC7B,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,KAAK,CAAC,CAAC,CAAC;YACjC,CAAC;QACH,CAAC;QACD,OAAO,OAAO,CAAC;IACjB,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,EAAE,CAAC;IACZ,CAAC;AACH,CAAC;AAED,MAAM,UAAU,oBAAoB;IAClC,MAAM,IAAI,GAAG,QAAQ,EAAkC,CAAC;IACxD,MAAM,KAAK,GAAa,EAAE,CAAC;IAE3B,KAAK,MAAM,GAAG,IAAI,gBAAgB,EAAE,CAAC;QACnC,MAAM,SAAS,GAAG,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;QAClC,IAAI,CAAC,SAAS;YAAE,SAAS;QAEzB,MAAM,UAAU,GAAa,EAAE,CAAC;QAChC,KAAK,MAAM,GAAG,IAAI,SAAS,EAAE,CAAC;YAC5B,MAAM,QAAQ,GAAG,UAAU,CAAC,GAAG,CAAC,CAAC;YACjC,MAAM,OAAO,GAAG,aAAa,CAAC,QAAQ,CAAC,CAAC;YACxC,UAAU,CAAC,IAAI,CAAC,GAAG,OAAO,CAAC,CAAC;QAC9B,CAAC;QAED,IAAI,UAAU,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YAC1B,KAAK,CAAC,IAAI,CAAC;gBACT,IAAI,EAAE,GAAG,CAAC,IAAI;gBACd,WAAW,EAAE,GAAG,CAAC,WAAW;gBAC5B,WAAW,EAAE,UAAU;gBACvB,WAAW,EAAE,GAAG,CAAC,WAAW;aAC7B,CAAC,CAAC;QACL,CAAC;IACH,CAAC;IAED,OAAO,KAAK,CAAC;AACf,CAAC"}

package/dist/auditor/types.d.ts

@@ -0,0 +1,31 @@
+import type { ScanFinding, ScanResult, Severity } from '../rules/types.js';
+import type { MCPServer } from './mcp-detector.js';
+import type { VSCodeExtension } from './vscode-extension-scanner.js';
+import type { DetectedCLI } from './cli-detector.js';
+import type { EnvExposure } from './env-auditor.js';
+export type AccessLevel = 'full' | 'workspace' | 'limited';
+export interface AITool {
+    name: string;
+    accessLevel: AccessLevel;
+    configPaths: string[];
+    description: string;
+}
+export interface ToolExposure {
+    tool: AITool;
+    exposedFindings: ScanFinding[];
+    counts: Record<Severity, number>;
+}
+export interface AuditResult {
+    tools: AITool[];
+    exposures: ToolExposure[];
+    scanResult: ScanResult;
+    totalExposed: number;
+    durationMs: number;
+    mcpServers: MCPServer[];
+    mcpConfigFiles: string[];
+    vsCodeExtensions: VSCodeExtension[] | null;
+    detectedCLIs: DetectedCLI[];
+    systemFindings: ScanFinding[];
+    envExposures: EnvExposure[];
+}
+//# sourceMappingURL=types.d.ts.map

package/dist/auditor/types.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../../src/auditor/types.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,WAAW,EAAE,UAAU,EAAE,QAAQ,EAAE,MAAM,mBAAmB,CAAC;AAC3E,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,mBAAmB,CAAC;AACnD,OAAO,KAAK,EAAE,eAAe,EAAE,MAAM,+BAA+B,CAAC;AACrE,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,mBAAmB,CAAC;AACrD,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,kBAAkB,CAAC;AAEpD,MAAM,MAAM,WAAW,GAAG,MAAM,GAAG,WAAW,GAAG,SAAS,CAAC;AAE3D,MAAM,WAAW,MAAM;IACrB,IAAI,EAAE,MAAM,CAAC;IACb,WAAW,EAAE,WAAW,CAAC;IACzB,WAAW,EAAE,MAAM,EAAE,CAAC;IACtB,WAAW,EAAE,MAAM,CAAC;CACrB;AAED,MAAM,WAAW,YAAY;IAC3B,IAAI,EAAE,MAAM,CAAC;IACb,eAAe,EAAE,WAAW,EAAE,CAAC;IAC/B,MAAM,EAAE,MAAM,CAAC,QAAQ,EAAE,MAAM,CAAC,CAAC;CAClC;AAED,MAAM,WAAW,WAAW;IAC1B,KAAK,EAAE,MAAM,EAAE,CAAC;IAChB,SAAS,EAAE,YAAY,EAAE,CAAC;IAC1B,UAAU,EAAE,UAAU,CAAC;IACvB,YAAY,EAAE,MAAM,CAAC;IACrB,UAAU,EAAE,MAAM,CAAC;IACnB,UAAU,EAAE,SAAS,EAAE,CAAC;IACxB,cAAc,EAAE,MAAM,EAAE,CAAC;IACzB,gBAAgB,EAAE,eAAe,EAAE,GAAG,IAAI,CAAC;IAC3C,YAAY,EAAE,WAAW,EAAE,CAAC;IAC5B,cAAc,EAAE,WAAW,EAAE,CAAC;IAC9B,YAAY,EAAE,WAAW,EAAE,CAAC;CAC7B"}

package/dist/auditor/types.js

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=types.js.map

package/dist/auditor/types.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.js","sourceRoot":"","sources":["../../src/auditor/types.ts"],"names":[],"mappings":""}

package/dist/auditor/vscode-extension-scanner.d.ts

@@ -0,0 +1,8 @@
+export interface VSCodeExtension {
+    id: string;
+    name: string;
+    riskLevel: 'high' | 'medium' | 'low';
+    riskReason: string;
+}
+export declare function scanVSCodeExtensions(): VSCodeExtension[] | null;
+//# sourceMappingURL=vscode-extension-scanner.d.ts.map

package/dist/auditor/vscode-extension-scanner.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"vscode-extension-scanner.d.ts","sourceRoot":"","sources":["../../src/auditor/vscode-extension-scanner.ts"],"names":[],"mappings":"AAEA,MAAM,WAAW,eAAe;IAC9B,EAAE,EAAE,MAAM,CAAC;IACX,IAAI,EAAE,MAAM,CAAC;IACb,SAAS,EAAE,MAAM,GAAG,QAAQ,GAAG,KAAK,CAAC;IACrC,UAAU,EAAE,MAAM,CAAC;CACpB;AAgCD,wBAAgB,oBAAoB,IAAI,eAAe,EAAE,GAAG,IAAI,CAwB/D"}

package/dist/auditor/vscode-extension-scanner.js

@@ -0,0 +1,51 @@
+import { execFileSync } from 'node:child_process';
+const KNOWN_AI_EXTENSIONS = new Map([
+    ['github.copilot', 'GitHub Copilot'],
+    ['github.copilot-chat', 'GitHub Copilot Chat'],
+    ['saoudrizwan.claude-dev', 'Cline'],
+    ['rooveterinaryinc.roo-cline', 'RooCode'],
+    ['continue.continue', 'Continue.dev'],
+    ['blackbox-ai.blackbox', 'BLACKBOXAI'],
+    ['qodo-gen.qodo-gen', 'Qodo Gen'],
+    ['amazonwebservices.amazon-q-vscode', 'Amazon Q'],
+    ['sourcegraph.cody-ai', 'Sourcegraph Cody'],
+    ['cursor.cursor', 'Cursor'],
+    ['google.gcp-vscode', 'Gemini Code Assist'],
+    ['tabnine.tabnine-vscode', 'Tabnine'],
+]);
+const EXTENSION_RISK = new Map([
+    ['github.copilot', { level: 'low', reason: 'Limited to open file context' }],
+    ['github.copilot-chat', { level: 'medium', reason: 'Can read workspace files via chat' }],
+    ['saoudrizwan.claude-dev', { level: 'high', reason: 'Full workspace file read/write + terminal access' }],
+    ['rooveterinaryinc.roo-cline', { level: 'high', reason: 'Full workspace file read/write + terminal access' }],
+    ['continue.continue', { level: 'medium', reason: 'Workspace file access via context providers' }],
+    ['blackbox-ai.blackbox', { level: 'medium', reason: 'Workspace file access for code completion' }],
+    ['qodo-gen.qodo-gen', { level: 'medium', reason: 'Workspace file access for test generation' }],
+    ['amazonwebservices.amazon-q-vscode', { level: 'medium', reason: 'Workspace file access + AWS integration' }],
+    ['sourcegraph.cody-ai', { level: 'medium', reason: 'Full codebase indexing + workspace access' }],
+    ['cursor.cursor', { level: 'medium', reason: 'Workspace file access' }],
+    ['google.gcp-vscode', { level: 'medium', reason: 'Workspace file access + GCP integration' }],
+    ['tabnine.tabnine-vscode', { level: 'low', reason: 'Limited to code completion context' }],
+]);
+export function scanVSCodeExtensions() {
+    let output;
+    try {
+        output = execFileSync('code', ['--list-extensions'], { timeout: 10000, encoding: 'utf-8', stdio: ['pipe', 'pipe', 'pipe'] });
+    }
+    catch {
+        return null; // VS Code not available
+    }
+    const installed = new Set(output
+        .split('\n')
+        .map((line) => line.trim().toLowerCase())
+        .filter(Boolean));
+    const found = [];
+    for (const [id, name] of KNOWN_AI_EXTENSIONS) {
+        if (installed.has(id.toLowerCase())) {
+            const risk = EXTENSION_RISK.get(id.toLowerCase()) ?? { level: 'medium', reason: 'Unknown AI extension' };
+            found.push({ id, name, riskLevel: risk.level, riskReason: risk.reason });
+        }
+    }
+    return found;
+}
+//# sourceMappingURL=vscode-extension-scanner.js.map

package/dist/auditor/vscode-extension-scanner.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"vscode-extension-scanner.js","sourceRoot":"","sources":["../../src/auditor/vscode-extension-scanner.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,YAAY,EAAE,MAAM,oBAAoB,CAAC;AASlD,MAAM,mBAAmB,GAAG,IAAI,GAAG,CAAiB;IAClD,CAAC,gBAAgB,EAAE,gBAAgB,CAAC;IACpC,CAAC,qBAAqB,EAAE,qBAAqB,CAAC;IAC9C,CAAC,wBAAwB,EAAE,OAAO,CAAC;IACnC,CAAC,4BAA4B,EAAE,SAAS,CAAC;IACzC,CAAC,mBAAmB,EAAE,cAAc,CAAC;IACrC,CAAC,sBAAsB,EAAE,YAAY,CAAC;IACtC,CAAC,mBAAmB,EAAE,UAAU,CAAC;IACjC,CAAC,mCAAmC,EAAE,UAAU,CAAC;IACjD,CAAC,qBAAqB,EAAE,kBAAkB,CAAC;IAC3C,CAAC,eAAe,EAAE,QAAQ,CAAC;IAC3B,CAAC,mBAAmB,EAAE,oBAAoB,CAAC;IAC3C,CAAC,wBAAwB,EAAE,SAAS,CAAC;CACtC,CAAC,CAAC;AAEH,MAAM,cAAc,GAAsE,IAAI,GAAG,CAAC;IAChG,CAAC,gBAAgB,EAAE,EAAE,KAAK,EAAE,KAAK,EAAE,MAAM,EAAE,8BAA8B,EAAE,CAAC;IAC5E,CAAC,qBAAqB,EAAE,EAAE,KAAK,EAAE,QAAQ,EAAE,MAAM,EAAE,mCAAmC,EAAE,CAAC;IACzF,CAAC,wBAAwB,EAAE,EAAE,KAAK,EAAE,MAAM,EAAE,MAAM,EAAE,kDAAkD,EAAE,CAAC;IACzG,CAAC,4BAA4B,EAAE,EAAE,KAAK,EAAE,MAAM,EAAE,MAAM,EAAE,kDAAkD,EAAE,CAAC;IAC7G,CAAC,mBAAmB,EAAE,EAAE,KAAK,EAAE,QAAQ,EAAE,MAAM,EAAE,6CAA6C,EAAE,CAAC;IACjG,CAAC,sBAAsB,EAAE,EAAE,KAAK,EAAE,QAAQ,EAAE,MAAM,EAAE,2CAA2C,EAAE,CAAC;IAClG,CAAC,mBAAmB,EAAE,EAAE,KAAK,EAAE,QAAQ,EAAE,MAAM,EAAE,2CAA2C,EAAE,CAAC;IAC/F,CAAC,mCAAmC,EAAE,EAAE,KAAK,EAAE,QAAQ,EAAE,MAAM,EAAE,yCAAyC,EAAE,CAAC;IAC7G,CAAC,qBAAqB,EAAE,EAAE,KAAK,EAAE,QAAQ,EAAE,MAAM,EAAE,2CAA2C,EAAE,CAAC;IACjG,CAAC,eAAe,EAAE,EAAE,KAAK,EAAE,QAAQ,EAAE,MAAM,EAAE,uBAAuB,EAAE,CAAC;IACvE,CAAC,mBAAmB,EAAE,EAAE,KAAK,EAAE,QAAQ,EAAE,MAAM,EAAE,yCAAyC,EAAE,CAAC;IAC7F,CAAC,wBAAwB,EAAE,EAAE,KAAK,EAAE,KAAK,EAAE,MAAM,EAAE,oCAAoC,EAAE,CAAC;CAC3F,CAAC,CAAC;AAEH,MAAM,UAAU,oBAAoB;IAClC,IAAI,MAAc,CAAC;IACnB,IAAI,CAAC;QACH,MAAM,GAAG,YAAY,CAAC,MAAM,EAAE,CAAC,mBAAmB,CAAC,EAAE,EAAE,OAAO,EAAE,KAAK,EAAE,QAAQ,EAAE,OAAO,EAAE,KAAK,EAAE,CAAC,MAAM,EAAE,MAAM,EAAE,MAAM,CAAC,EAAE,CAAC,CAAC;IAC/H,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,IAAI,CAAC,CAAC,wBAAwB;IACvC,CAAC;IAED,MAAM,SAAS,GAAG,IAAI,GAAG,CACvB,MAAM;SACH,KAAK,CAAC,IAAI,CAAC;SACX,GAAG,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,IAAI,CAAC,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;SACxC,MAAM,CAAC,OAAO,CAAC,CACnB,CAAC;IAEF,MAAM,KAAK,GAAsB,EAAE,CAAC;IACpC,KAAK,MAAM,CAAC,EAAE,EAAE,IAAI,CAAC,IAAI,mBAAmB,EAAE,CAAC;QAC7C,IAAI,SAAS,CAAC,GAAG,CAAC,EAAE,CAAC,WAAW,EAAE,CAAC,EAAE,CAAC;YACpC,MAAM,IAAI,GAAG,cAAc,CAAC,GAAG,CAAC,EAAE,CAAC,WAAW,EAAE,CAAC,IAAI,EAAE,KAAK,EAAE,QAAiB,EAAE,MAAM,EAAE,sBAAsB,EAAE,CAAC;YAClH,KAAK,CAAC,IAAI,CAAC,EAAE,EAAE,EAAE,IAAI,EAAE,SAAS,EAAE,IAAI,CAAC,KAAK,EAAE,UAAU,EAAE,IAAI,CAAC,MAAM,EAAE,CAAC,CAAC;QAC3E,CAAC;IACH,CAAC;IAED,OAAO,KAAK,CAAC;AACf,CAAC"}

package/dist/cli.d.ts

@@ -0,0 +1,3 @@
+#!/usr/bin/env node
+export {};
+//# sourceMappingURL=cli.d.ts.map

package/dist/cli.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"cli.d.ts","sourceRoot":"","sources":["../src/cli.ts"],"names":[],"mappings":""}

package/dist/cli.js

@@ -0,0 +1,159 @@
+#!/usr/bin/env node
+import { Command, Option } from 'commander';
+import chalk from 'chalk';
+import { runScan } from './commands/scan.js';
+import { runInit } from './commands/init.js';
+import { runAudit } from './commands/audit.js';
+import { isProtectionEnabled, setProtectionEnabled, addAllowlistPath, disableRule } from './config.js';
+import { allRules } from './rules/index.js';
+import { detectInstalledTools } from './auditor/tool-detector.js';
+import { existsSync } from 'node:fs';
+import { join } from 'node:path';
+import { homedir } from 'node:os';
+import { VERSION } from './version.js';
+// Launch TUI when invoked with no arguments
+const args = process.argv.slice(2);
+if (args.length === 0) {
+    import('./tui/index.js')
+        .then(({ launchTUI }) => launchTUI())
+        .catch((err) => {
+        console.error(`Fatal: ${err.message}`);
+        process.exitCode = 1;
+    });
+}
+else {
+    const program = new Command();
+    program
+        .name('chainwall')
+        .description('Security scanner for exposed secrets, crypto keys, and dangerous patterns.\n\nRun with no arguments to launch the interactive TUI.')
+        .version(VERSION)
+        .addHelpText('after', `
+Examples:
+  $ chainwall                      Launch interactive TUI
+  $ chainwall scan                 Full security scan (home + credentials)
+  $ chainwall scan ~/project       Scan a specific directory
+  $ chainwall scan --system        System targets only (credentials, keys)
+  $ chainwall audit                Targeted system audit (~3s)
+  $ chainwall audit ~/project      Scan a specific directory + system audit
+  $ chainwall audit --deep         Full home directory scan (slow)
+  $ chainwall watch                Watch current dir for secrets in real-time
+  $ chainwall init                 Install hooks in current project`);
+    program
+        .command('scan')
+        .description('Scan a directory for security findings')
+        .argument('[dir]', 'Directory to scan', '.')
+        .option('--json', 'Output results as JSON (for CI pipelines)')
+        .option('--crypto-only', 'Only run crypto/web3 rules')
+        .option('--verbose', 'Show match details and descriptions')
+        .option('--system', 'Scan known credential locations across ~/')
+        .addOption(new Option('--format <type>', 'Output format').choices(['text', 'json', 'sarif']).default('text'))
+        .option('--include-tests', 'Include test directories in scan (normally skipped)')
+        .option('--grouped', 'Group findings by category instead of severity')
+        .action(async (dir, options) => {
+        await runScan(dir, options);
+    });
+    program
+        .command('init')
+        .description('Initialize ChainWall hooks in a project')
+        .argument('[dir]', 'Target directory', '.')
+        .action((dir) => {
+        runInit(dir);
+    });
+    program
+        .command('audit')
+        .description('Map AI tool permissions and cross-reference with exposed secrets')
+        .argument('[dir]', 'Directory to scan')
+        .option('--json', 'Output results as JSON')
+        .addOption(new Option('--format <type>', 'Output format').choices(['text', 'json', 'sarif']).default('text'))
+        .option('--remediate', 'Interactive remediation after audit')
+        .option('--deep', 'Include full recursive home directory scan (slow)')
+        .action(async (dir, options) => {
+        await runAudit(dir ?? '.', options);
+    });
+    program
+        .command('watch')
+        .description('Watch a directory for file changes and scan in real-time')
+        .argument('[dir]', 'Directory to watch', '.')
+        .option('--verbose', 'Show match details')
+        .option('--json', 'Output findings as JSON lines')
+        .action(async (dir, options) => {
+        const { runWatch } = await import('./commands/watch.js');
+        await runWatch(dir, options);
+    });
+    program
+        .command('mcp')
+        .description('Start MCP security server (stdio transport)')
+        .action(async () => {
+        const { startMCPServer } = await import('./mcp-server/index.js');
+        await startMCPServer();
+    });
+    program
+        .command('enable')
+        .description('Enable real-time protection (hooks block threats)')
+        .action(() => {
+        setProtectionEnabled(true);
+        console.log(chalk.green('\u2713 Real-time protection enabled'));
+    });
+    program
+        .command('disable')
+        .description('Disable real-time protection (hooks pass through)')
+        .action(() => {
+        setProtectionEnabled(false);
+        console.log(chalk.yellow('\u26a0 Real-time protection disabled'));
+        console.log('  Manual scans (chainwall scan/audit) still work.');
+        console.log(`  Run ${chalk.bold('chainwall enable')} to re-enable.`);
+    });
+    program
+        .command('allow <path>')
+        .description('Add a file path to the global allowlist, or disable a rule')
+        .option('--rule', 'Treat the argument as a rule ID instead of a file path')
+        .action((pathOrRule, options) => {
+        const value = pathOrRule.trim();
+        if (!value) {
+            console.error('chainwall: value cannot be empty');
+            process.exitCode = 1;
+            return;
+        }
+        if (options.rule) {
+            disableRule(value);
+            console.log(chalk.green(`\u2713 Rule disabled: ${value}`));
+        }
+        else {
+            addAllowlistPath(value);
+            console.log(chalk.green(`\u2713 Path allowlisted: ${value}`));
+        }
+    });
+    program
+        .command('status')
+        .description('Show protection status')
+        .action(() => {
+        const enabled = isProtectionEnabled();
+        const tools = detectInstalledTools();
+        const hooksInstalled = existsSync(join(process.cwd(), '.llm-av'));
+        const configPath = join(homedir(), '.llm-av', 'config.json');
+        console.log('');
+        console.log(chalk.bold('ChainWall Status'));
+        if (enabled) {
+            console.log(`  Protection:  ${chalk.green('\u2713 ON')}`);
+        }
+        else {
+            console.log(`  Protection:  ${chalk.yellow('\u2717 OFF')}`);
+        }
+        console.log(`  Rules:       ${allRules.length} patterns loaded`);
+        if (tools.length > 0) {
+            const names = tools.map((t) => t.name).join(', ');
+            console.log(`  AI tools:    ${tools.length} detected (${names})`);
+        }
+        else {
+            console.log('  AI tools:    none detected');
+        }
+        console.log(`  Hooks:       ${hooksInstalled ? chalk.green('\u2713 installed in current project') : chalk.yellow('\u2717 not installed')}`);
+        console.log(`  Config:      ${configPath}`);
+        console.log('');
+    });
+    program.parseAsync().catch((err) => {
+        console.error(`Fatal: ${err.message}`);
+        process.exitCode = 1;
+    });
+}
+//# sourceMappingURL=cli.js.map

package/dist/cli.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"cli.js","sourceRoot":"","sources":["../src/cli.ts"],"names":[],"mappings":";AAEA,OAAO,EAAE,OAAO,EAAE,MAAM,EAAE,MAAM,WAAW,CAAC;AAC5C,OAAO,KAAK,MAAM,OAAO,CAAC;AAC1B,OAAO,EAAE,OAAO,EAAE,MAAM,oBAAoB,CAAC;AAC7C,OAAO,EAAE,OAAO,EAAE,MAAM,oBAAoB,CAAC;AAC7C,OAAO,EAAE,QAAQ,EAAE,MAAM,qBAAqB,CAAC;AAC/C,OAAO,EAAE,mBAAmB,EAAE,oBAAoB,EAAE,gBAAgB,EAAE,WAAW,EAAE,MAAM,aAAa,CAAC;AACvG,OAAO,EAAE,QAAQ,EAAE,MAAM,kBAAkB,CAAC;AAC5C,OAAO,EAAE,oBAAoB,EAAE,MAAM,4BAA4B,CAAC;AAClE,OAAO,EAAE,UAAU,EAAE,MAAM,SAAS,CAAC;AACrC,OAAO,EAAE,IAAI,EAAE,MAAM,WAAW,CAAC;AACjC,OAAO,EAAE,OAAO,EAAE,MAAM,SAAS,CAAC;AAClC,OAAO,EAAE,OAAO,EAAE,MAAM,cAAc,CAAC;AAEvC,4CAA4C;AAC5C,MAAM,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;AACnC,IAAI,IAAI,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;IACtB,MAAM,CAAC,gBAAgB,CAAC;SACrB,IAAI,CAAC,CAAC,EAAE,SAAS,EAAE,EAAE,EAAE,CAAC,SAAS,EAAE,CAAC;SACpC,KAAK,CAAC,CAAC,GAAU,EAAE,EAAE;QACpB,OAAO,CAAC,KAAK,CAAC,UAAU,GAAG,CAAC,OAAO,EAAE,CAAC,CAAC;QACvC,OAAO,CAAC,QAAQ,GAAG,CAAC,CAAC;IACvB,CAAC,CAAC,CAAC;AACP,CAAC;KAAM,CAAC;IACN,MAAM,OAAO,GAAG,IAAI,OAAO,EAAE,CAAC;IAE9B,OAAO;SACJ,IAAI,CAAC,WAAW,CAAC;SACjB,WAAW,CAAC,oIAAoI,CAAC;SACjJ,OAAO,CAAC,OAAO,CAAC;SAChB,WAAW,CAAC,OAAO,EAAE;;;;;;;;;;oEAU0C,CAAC,CAAC;IAEpE,OAAO;SACJ,OAAO,CAAC,MAAM,CAAC;SACf,WAAW,CAAC,wCAAwC,CAAC;SACrD,QAAQ,CAAC,OAAO,EAAE,mBAAmB,EAAE,GAAG,CAAC;SAC3C,MAAM,CAAC,QAAQ,EAAE,2CAA2C,CAAC;SAC7D,MAAM,CAAC,eAAe,EAAE,4BAA4B,CAAC;SACrD,MAAM,CAAC,WAAW,EAAE,qCAAqC,CAAC;SAC1D,MAAM,CAAC,UAAU,EAAE,2CAA2C,CAAC;SAC/D,SAAS,CAAC,IAAI,MAAM,CAAC,iBAAiB,EAAE,eAAe,CAAC,CAAC,OAAO,CAAC,CAAC,MAAM,EAAE,MAAM,EAAE,OAAO,CAAC,CAAC,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC;SAC5G,MAAM,CAAC,iBAAiB,EAAE,qDAAqD,CAAC;SAChF,MAAM,CAAC,WAAW,EAAE,gDAAgD,CAAC;SACrE,MAAM,CAAC,KAAK,EAAE,GAAW,EAAE,OAAkJ,EAAE,EAAE;QAChL,MAAM,OAAO,CAAC,GAAG,EAAE,OAAO,CAAC,CAAC;IAC9B,CAAC,CAAC,CAAC;IAEL,OAAO;SACJ,OAAO,CAAC,MAAM,CAAC;SACf,WAAW,CAAC,yCAAyC,CAAC;SACtD,QAAQ,CAAC,OAAO,EAAE,kBAAkB,EAAE,GAAG,CAAC;SAC1C,MAAM,CAAC,CAAC,GAAY,EAAE,EAAE;QACvB,OAAO,CAAC,GAAG,CAAC,CAAC;IACf,CAAC,CAAC,CAAC;IAEL,OAAO;SACJ,OAAO,CAAC,OAAO,CAAC;SAChB,WAAW,CAAC,kEAAkE,CAAC;SAC/E,QAAQ,CAAC,OAAO,EAAE,mBAAmB,CAAC;SACtC,MAAM,CAAC,QAAQ,EAAE,wBAAwB,CAAC;SAC1C,SAAS,CAAC,IAAI,MAAM,CAAC,iBAAiB,EAAE,eAAe,CAAC,CAAC,OAAO,CAAC,CAAC,MAAM,EAAE,MAAM,EAAE,OAAO,CAAC,CAAC,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC;SAC5G,MAAM,CAAC,aAAa,EAAE,qCAAqC,CAAC;SAC5D,MAAM,CAAC,QAAQ,EAAE,mDAAmD,CAAC;SACrE,MAAM,CAAC,KAAK,EAAE,GAAuB,EAAE,OAAiF,EAAE,EAAE;QAC3H,MAAM,QAAQ,CAAC,GAAG,IAAI,GAAG,EAAE,OAAO,CAAC,CAAC;IACtC,CAAC,CAAC,CAAC;IAEL,OAAO;SACJ,OAAO,CAAC,OAAO,CAAC;SAChB,WAAW,CAAC,0DAA0D,CAAC;SACvE,QAAQ,CAAC,OAAO,EAAE,oBAAoB,EAAE,GAAG,CAAC;SAC5C,MAAM,CAAC,WAAW,EAAE,oBAAoB,CAAC;SACzC,MAAM,CAAC,QAAQ,EAAE,+BAA+B,CAAC;SACjD,MAAM,CAAC,KAAK,EAAE,GAAW,EAAE,OAA8C,EAAE,EAAE;QAC5E,MAAM,EAAE,QAAQ,EAAE,GAAG,MAAM,MAAM,CAAC,qBAAqB,CAAC,CAAC;QACzD,MAAM,QAAQ,CAAC,GAAG,EAAE,OAAO,CAAC,CAAC;IAC/B,CAAC,CAAC,CAAC;IAEL,OAAO;SACJ,OAAO,CAAC,KAAK,CAAC;SACd,WAAW,CAAC,6CAA6C,CAAC;SAC1D,MAAM,CAAC,KAAK,IAAI,EAAE;QACjB,MAAM,EAAE,cAAc,EAAE,GAAG,MAAM,MAAM,CAAC,uBAAuB,CAAC,CAAC;QACjE,MAAM,cAAc,EAAE,CAAC;IACzB,CAAC,CAAC,CAAC;IAEL,OAAO;SACJ,OAAO,CAAC,QAAQ,CAAC;SACjB,WAAW,CAAC,mDAAmD,CAAC;SAChE,MAAM,CAAC,GAAG,EAAE;QACX,oBAAoB,CAAC,IAAI,CAAC,CAAC;QAC3B,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,KAAK,CAAC,qCAAqC,CAAC,CAAC,CAAC;IAClE,CAAC,CAAC,CAAC;IAEL,OAAO;SACJ,OAAO,CAAC,SAAS,CAAC;SAClB,WAAW,CAAC,mDAAmD,CAAC;SAChE,MAAM,CAAC,GAAG,EAAE;QACX,oBAAoB,CAAC,KAAK,CAAC,CAAC;QAC5B,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,MAAM,CAAC,sCAAsC,CAAC,CAAC,CAAC;QAClE,OAAO,CAAC,GAAG,CAAC,mDAAmD,CAAC,CAAC;QACjE,OAAO,CAAC,GAAG,CAAC,SAAS,KAAK,CAAC,IAAI,CAAC,kBAAkB,CAAC,gBAAgB,CAAC,CAAC;IACvE,CAAC,CAAC,CAAC;IAEL,OAAO;SACJ,OAAO,CAAC,cAAc,CAAC;SACvB,WAAW,CAAC,4DAA4D,CAAC;SACzE,MAAM,CAAC,QAAQ,EAAE,wDAAwD,CAAC;SAC1E,MAAM,CAAC,CAAC,UAAkB,EAAE,OAA2B,EAAE,EAAE;QAC1D,MAAM,KAAK,GAAG,UAAU,CAAC,IAAI,EAAE,CAAC;QAChC,IAAI,CAAC,KAAK,EAAE,CAAC;YACX,OAAO,CAAC,KAAK,CAAC,kCAAkC,CAAC,CAAC;YAClD,OAAO,CAAC,QAAQ,GAAG,CAAC,CAAC;YACrB,OAAO;QACT,CAAC;QACD,IAAI,OAAO,CAAC,IAAI,EAAE,CAAC;YACjB,WAAW,CAAC,KAAK,CAAC,CAAC;YACnB,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,KAAK,CAAC,yBAAyB,KAAK,EAAE,CAAC,CAAC,CAAC;QAC7D,CAAC;aAAM,CAAC;YACN,gBAAgB,CAAC,KAAK,CAAC,CAAC;YACxB,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,KAAK,CAAC,4BAA4B,KAAK,EAAE,CAAC,CAAC,CAAC;QAChE,CAAC;IACH,CAAC,CAAC,CAAC;IAEL,OAAO;SACJ,OAAO,CAAC,QAAQ,CAAC;SACjB,WAAW,CAAC,wBAAwB,CAAC;SACrC,MAAM,CAAC,GAAG,EAAE;QACX,MAAM,OAAO,GAAG,mBAAmB,EAAE,CAAC;QACtC,MAAM,KAAK,GAAG,oBAAoB,EAAE,CAAC;QACrC,MAAM,cAAc,GAAG,UAAU,CAAC,IAAI,CAAC,OAAO,CAAC,GAAG,EAAE,EAAE,SAAS,CAAC,CAAC,CAAC;QAClE,MAAM,UAAU,GAAG,IAAI,CAAC,OAAO,EAAE,EAAE,SAAS,EAAE,aAAa,CAAC,CAAC;QAE7D,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;QAChB,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,kBAAkB,CAAC,CAAC,CAAC;QAC5C,IAAI,OAAO,EAAE,CAAC;YACZ,OAAO,CAAC,GAAG,CAAC,kBAAkB,KAAK,CAAC,KAAK,CAAC,WAAW,CAAC,EAAE,CAAC,CAAC;QAC5D,CAAC;aAAM,CAAC;YACN,OAAO,CAAC,GAAG,CAAC,kBAAkB,KAAK,CAAC,MAAM,CAAC,YAAY,CAAC,EAAE,CAAC,CAAC;QAC9D,CAAC;QACD,OAAO,CAAC,GAAG,CAAC,kBAAkB,QAAQ,CAAC,MAAM,kBAAkB,CAAC,CAAC;QACjE,IAAI,KAAK,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YACrB,MAAM,KAAK,GAAG,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;YAClD,OAAO,CAAC,GAAG,CAAC,kBAAkB,KAAK,CAAC,MAAM,cAAc,KAAK,GAAG,CAAC,CAAC;QACpE,CAAC;aAAM,CAAC;YACN,OAAO,CAAC,GAAG,CAAC,8BAA8B,CAAC,CAAC;QAC9C,CAAC;QACD,OAAO,CAAC,GAAG,CAAC,kBAAkB,cAAc,CAAC,CAAC,CAAC,KAAK,CAAC,KAAK,CAAC,qCAAqC,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,MAAM,CAAC,sBAAsB,CAAC,EAAE,CAAC,CAAC;QAC5I,OAAO,CAAC,GAAG,CAAC,kBAAkB,UAAU,EAAE,CAAC,CAAC;QAC5C,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;IAClB,CAAC,CAAC,CAAC;IAEL,OAAO,CAAC,UAAU,EAAE,CAAC,KAAK,CAAC,CAAC,GAAU,EAAE,EAAE;QACxC,OAAO,CAAC,KAAK,CAAC,UAAU,GAAG,CAAC,OAAO,EAAE,CAAC,CAAC;QACvC,OAAO,CAAC,QAAQ,GAAG,CAAC,CAAC;IACvB,CAAC,CAAC,CAAC;AACL,CAAC"}

package/dist/commands/audit.d.ts

@@ -0,0 +1,8 @@
+export interface AuditOptions {
+    json?: boolean;
+    format?: string;
+    remediate?: boolean;
+    deep?: boolean;
+}
+export declare function runAudit(targetDir: string, options: AuditOptions): Promise<void>;
+//# sourceMappingURL=audit.d.ts.map

package/dist/commands/audit.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"audit.d.ts","sourceRoot":"","sources":["../../src/commands/audit.ts"],"names":[],"mappings":"AAgBA,MAAM,WAAW,YAAY;IAC3B,IAAI,CAAC,EAAE,OAAO,CAAC;IACf,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,SAAS,CAAC,EAAE,OAAO,CAAC;IACpB,IAAI,CAAC,EAAE,OAAO,CAAC;CAChB;AAED,wBAAsB,QAAQ,CAAC,SAAS,EAAE,MAAM,EAAE,OAAO,EAAE,YAAY,GAAG,OAAO,CAAC,IAAI,CAAC,CA0JtF"}