chainwall 0.1.0

package/dist/commands/audit.js

@@ -0,0 +1,151 @@
+import { resolve } from 'node:path';
+import { existsSync, statSync } from 'node:fs';
+import { homedir } from 'node:os';
+import ora from 'ora';
+import { loadConfig } from '../config.js';
+import { allRules } from '../rules/index.js';
+import { walkFiles, walkSystemTargets } from '../scanner/filesystem-scanner.js';
+import { createRuleEngine } from '../scanner/rule-engine.js';
+import { calculateRiskScore } from '../reporter/risk-scorer.js';
+import { detectInstalledTools } from '../auditor/tool-detector.js';
+import { crossReference } from '../auditor/cross-reference.js';
+import { printAuditReport, printJsonAuditReport } from '../reporter/audit-report.js';
+export async function runAudit(targetDir, options) {
+    const isDefaultDir = targetDir === '.';
+    const resolvedTarget = resolve(targetDir);
+    if (!isDefaultDir && (!existsSync(resolvedTarget) || !statSync(resolvedTarget).isDirectory())) {
+        console.error(`chainwall: ${resolvedTarget} is not a valid directory`);
+        process.exitCode = 1;
+        return;
+    }
+    const config = loadConfig(isDefaultDir ? undefined : resolvedTarget);
+    const startTime = Date.now();
+    // Determine scan scope:
+    // - default (no dir, no --deep): system targets only — no recursive walk
+    // - explicit dir: walk that dir + system targets
+    // - --deep: walk homedir + system targets (old behavior)
+    // - explicit dir + --deep: use explicit dir, warn about --deep being ignored
+    if (!isDefaultDir && options.deep) {
+        console.error('chainwall: --deep is ignored when an explicit directory is provided');
+    }
+    const shouldWalk = !isDefaultDir || options.deep;
+    const walkDir = !isDefaultDir ? resolve(targetDir) : options.deep ? homedir() : resolve(targetDir);
+    const outputFormat = options.format || (options.json ? 'json' : 'text');
+    const spinner = (outputFormat === 'json' || outputFormat === 'sarif' || !process.stdout.isTTY) ? null : ora('Detecting AI tools...').start();
+    const tools = detectInstalledTools();
+    if (spinner)
+        spinner.text = `Found ${tools.length} AI tool(s).${shouldWalk ? ' Scanning files...' : ' Running targeted system audit...'}`;
+    const rules = allRules;
+    const engine = createRuleEngine({ rules, config });
+    const findings = [];
+    const stats = { filesScanned: 0, filesSkipped: 0 };
+    if (shouldWalk) {
+        for await (const file of walkFiles(walkDir, stats)) {
+            const fileFindings = engine.scanFile(file.path, file.content);
+            findings.push(...fileFindings);
+            if (spinner && stats.filesScanned % 100 === 0) {
+                spinner.text = `Scanned ${stats.filesScanned} files... (${findings.length} findings)`;
+            }
+        }
+    }
+    // System scan — always included for comprehensive audit
+    if (spinner)
+        spinner.text = 'System scan: targeting credential locations...';
+    const { getSystemTargets, getPermissionTargets } = await import('../scanner/system-targets.js');
+    const { checkPermissions } = await import('../scanner/permission-checker.js');
+    const systemFindings = [];
+    const targets = getSystemTargets();
+    for await (const file of walkSystemTargets(targets, stats)) {
+        const fileFindings = engine.scanFile(file.path, file.content);
+        systemFindings.push(...fileFindings);
+    }
+    const permFindings = await checkPermissions(getPermissionTargets());
+    systemFindings.push(...permFindings);
+    findings.push(...systemFindings);
+    // MCP detection
+    if (spinner)
+        spinner.text = 'Detecting MCP servers...';
+    const { detectMCPServers } = await import('../auditor/mcp-detector.js');
+    const mcpResult = detectMCPServers();
+    const mcpServers = mcpResult.servers;
+    const mcpConfigFiles = mcpResult.configFiles;
+    // VS Code extensions
+    if (spinner)
+        spinner.text = 'Scanning VS Code extensions...';
+    const { scanVSCodeExtensions } = await import('../auditor/vscode-extension-scanner.js');
+    const vsCodeExtensions = scanVSCodeExtensions();
+    // CLI detection
+    if (spinner)
+        spinner.text = 'Detecting AI CLI tools...';
+    const { detectAICLIs } = await import('../auditor/cli-detector.js');
+    const detectedCLIs = detectAICLIs();
+    // Environment variable audit
+    if (spinner)
+        spinner.text = 'Auditing environment variables...';
+    const { auditEnvironment } = await import('../auditor/env-auditor.js');
+    const envExposures = auditEnvironment();
+    // Prompt injection scan
+    if (spinner)
+        spinner.text = 'Scanning for prompt injection...';
+    const { scanInstructionFiles } = await import('../scanner/injection-scanner.js');
+    for await (const finding of scanInstructionFiles()) {
+        findings.push(finding);
+    }
+    if (spinner)
+        spinner.text = 'Mapping access...';
+    const { score, label } = calculateRiskScore(findings);
+    const scanResult = {
+        findings,
+        filesScanned: stats.filesScanned,
+        filesSkipped: stats.filesSkipped,
+        scanDurationMs: Date.now() - startTime,
+        riskScore: score,
+        riskLabel: label,
+    };
+    // Workspace root for access scoping: use actual project dir (cwd or explicit),
+    // not the scan directory (which may be homedir for full audits).
+    // Workspace-scoped tools should only reach files within the project.
+    const workspaceRoot = resolve(targetDir);
+    const exposures = crossReference(tools, findings, workspaceRoot);
+    const exposedSet = new Set();
+    for (const exp of exposures) {
+        for (const f of exp.exposedFindings) {
+            exposedSet.add(`${f.filePath}:${f.line}`);
+        }
+    }
+    const durationMs = Date.now() - startTime;
+    const result = {
+        tools,
+        exposures,
+        scanResult,
+        totalExposed: exposedSet.size,
+        durationMs,
+        mcpServers,
+        mcpConfigFiles,
+        vsCodeExtensions,
+        detectedCLIs,
+        systemFindings,
+        envExposures,
+    };
+    if (spinner)
+        spinner.stop();
+    if (outputFormat === 'sarif') {
+        const { generateSarifReport } = await import('../reporter/sarif-report.js');
+        console.log(JSON.stringify(generateSarifReport(scanResult), null, 2));
+    }
+    else if (outputFormat === 'json') {
+        printJsonAuditReport(result);
+    }
+    else {
+        printAuditReport(result);
+    }
+    // Interactive remediation mode
+    if (options.remediate && outputFormat !== 'json' && outputFormat !== 'sarif') {
+        const { runInteractiveRemediation } = await import('./remediate-cli.js');
+        await runInteractiveRemediation(result);
+    }
+    if (findings.some((f) => f.severity === 'critical' || f.severity === 'high')) {
+        process.exitCode = 1;
+    }
+}
+//# sourceMappingURL=audit.js.map

package/dist/commands/audit.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"audit.js","sourceRoot":"","sources":["../../src/commands/audit.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,OAAO,EAAE,MAAM,WAAW,CAAC;AACpC,OAAO,EAAE,UAAU,EAAE,QAAQ,EAAE,MAAM,SAAS,CAAC;AAC/C,OAAO,EAAE,OAAO,EAAE,MAAM,SAAS,CAAC;AAClC,OAAO,GAAG,MAAM,KAAK,CAAC;AACtB,OAAO,EAAE,UAAU,EAAE,MAAM,cAAc,CAAC;AAC1C,OAAO,EAAE,QAAQ,EAAE,MAAM,mBAAmB,CAAC;AAC7C,OAAO,EAAE,SAAS,EAAE,iBAAiB,EAAE,MAAM,kCAAkC,CAAC;AAEhF,OAAO,EAAE,gBAAgB,EAAE,MAAM,2BAA2B,CAAC;AAC7D,OAAO,EAAE,kBAAkB,EAAE,MAAM,4BAA4B,CAAC;AAChE,OAAO,EAAE,oBAAoB,EAAE,MAAM,6BAA6B,CAAC;AACnE,OAAO,EAAE,cAAc,EAAE,MAAM,+BAA+B,CAAC;AAC/D,OAAO,EAAE,gBAAgB,EAAE,oBAAoB,EAAE,MAAM,6BAA6B,CAAC;AAWrF,MAAM,CAAC,KAAK,UAAU,QAAQ,CAAC,SAAiB,EAAE,OAAqB;IACrE,MAAM,YAAY,GAAG,SAAS,KAAK,GAAG,CAAC;IACvC,MAAM,cAAc,GAAG,OAAO,CAAC,SAAS,CAAC,CAAC;IAE1C,IAAI,CAAC,YAAY,IAAI,CAAC,CAAC,UAAU,CAAC,cAAc,CAAC,IAAI,CAAC,QAAQ,CAAC,cAAc,CAAC,CAAC,WAAW,EAAE,CAAC,EAAE,CAAC;QAC9F,OAAO,CAAC,KAAK,CAAC,cAAc,cAAc,2BAA2B,CAAC,CAAC;QACvE,OAAO,CAAC,QAAQ,GAAG,CAAC,CAAC;QACrB,OAAO;IACT,CAAC;IAED,MAAM,MAAM,GAAG,UAAU,CAAC,YAAY,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,cAAc,CAAC,CAAC;IACrE,MAAM,SAAS,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;IAE7B,wBAAwB;IACxB,yEAAyE;IACzE,iDAAiD;IACjD,yDAAyD;IACzD,6EAA6E;IAC7E,IAAI,CAAC,YAAY,IAAI,OAAO,CAAC,IAAI,EAAE,CAAC;QAClC,OAAO,CAAC,KAAK,CAAC,qEAAqE,CAAC,CAAC;IACvF,CAAC;IACD,MAAM,UAAU,GAAG,CAAC,YAAY,IAAI,OAAO,CAAC,IAAI,CAAC;IACjD,MAAM,OAAO,GAAG,CAAC,YAAY,CAAC,CAAC,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,OAAO,EAAE,CAAC,CAAC,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC;IAEnG,MAAM,YAAY,GAAG,OAAO,CAAC,MAAM,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC;IACxE,MAAM,OAAO,GAAG,CAAC,YAAY,KAAK,MAAM,IAAI,YAAY,KAAK,OAAO,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,GAAG,CAAC,uBAAuB,CAAC,CAAC,KAAK,EAAE,CAAC;IAE7I,MAAM,KAAK,GAAG,oBAAoB,EAAE,CAAC;IACrC,IAAI,OAAO;QAAE,OAAO,CAAC,IAAI,GAAG,SAAS,KAAK,CAAC,MAAM,eAAe,UAAU,CAAC,CAAC,CAAC,oBAAoB,CAAC,CAAC,CAAC,mCAAmC,EAAE,CAAC;IAE1I,MAAM,KAAK,GAAG,QAAQ,CAAC;IACvB,MAAM,MAAM,GAAG,gBAAgB,CAAC,EAAE,KAAK,EAAE,MAAM,EAAE,CAAC,CAAC;IAEnD,MAAM,QAAQ,GAAkB,EAAE,CAAC;IACnC,MAAM,KAAK,GAAc,EAAE,YAAY,EAAE,CAAC,EAAE,YAAY,EAAE,CAAC,EAAE,CAAC;IAE9D,IAAI,UAAU,EAAE,CAAC;QACf,IAAI,KAAK,EAAE,MAAM,IAAI,IAAI,SAAS,CAAC,OAAO,EAAE,KAAK,CAAC,EAAE,CAAC;YACnD,MAAM,YAAY,GAAG,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,IAAI,EAAE,IAAI,CAAC,OAAO,CAAC,CAAC;YAC9D,QAAQ,CAAC,IAAI,CAAC,GAAG,YAAY,CAAC,CAAC;YAE/B,IAAI,OAAO,IAAI,KAAK,CAAC,YAAY,GAAG,GAAG,KAAK,CAAC,EAAE,CAAC;gBAC9C,OAAO,CAAC,IAAI,GAAG,WAAW,KAAK,CAAC,YAAY,cAAc,QAAQ,CAAC,MAAM,YAAY,CAAC;YACxF,CAAC;QACH,CAAC;IACH,CAAC;IAED,wDAAwD;IACxD,IAAI,OAAO;QAAE,OAAO,CAAC,IAAI,GAAG,gDAAgD,CAAC;IAE7E,MAAM,EAAE,gBAAgB,EAAE,oBAAoB,EAAE,GAAG,MAAM,MAAM,CAAC,8BAA8B,CAAC,CAAC;IAChG,MAAM,EAAE,gBAAgB,EAAE,GAAG,MAAM,MAAM,CAAC,kCAAkC,CAAC,CAAC;IAE9E,MAAM,cAAc,GAAkB,EAAE,CAAC;IACzC,MAAM,OAAO,GAAG,gBAAgB,EAAE,CAAC;IACnC,IAAI,KAAK,EAAE,MAAM,IAAI,IAAI,iBAAiB,CAAC,OAAO,EAAE,KAAK,CAAC,EAAE,CAAC;QAC3D,MAAM,YAAY,GAAG,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,IAAI,EAAE,IAAI,CAAC,OAAO,CAAC,CAAC;QAC9D,cAAc,CAAC,IAAI,CAAC,GAAG,YAAY,CAAC,CAAC;IACvC,CAAC;IAED,MAAM,YAAY,GAAG,MAAM,gBAAgB,CAAC,oBAAoB,EAAE,CAAC,CAAC;IACpE,cAAc,CAAC,IAAI,CAAC,GAAG,YAAY,CAAC,CAAC;IACrC,QAAQ,CAAC,IAAI,CAAC,GAAG,cAAc,CAAC,CAAC;IAEjC,gBAAgB;IAChB,IAAI,OAAO;QAAE,OAAO,CAAC,IAAI,GAAG,0BAA0B,CAAC;IACvD,MAAM,EAAE,gBAAgB,EAAE,GAAG,MAAM,MAAM,CAAC,4BAA4B,CAAC,CAAC;IACxE,MAAM,SAAS,GAAG,gBAAgB,EAAE,CAAC;IACrC,MAAM,UAAU,GAAG,SAAS,CAAC,OAAO,CAAC;IACrC,MAAM,cAAc,GAAG,SAAS,CAAC,WAAW,CAAC;IAE7C,qBAAqB;IACrB,IAAI,OAAO;QAAE,OAAO,CAAC,IAAI,GAAG,gCAAgC,CAAC;IAC7D,MAAM,EAAE,oBAAoB,EAAE,GAAG,MAAM,MAAM,CAAC,wCAAwC,CAAC,CAAC;IACxF,MAAM,gBAAgB,GAAG,oBAAoB,EAAE,CAAC;IAEhD,gBAAgB;IAChB,IAAI,OAAO;QAAE,OAAO,CAAC,IAAI,GAAG,2BAA2B,CAAC;IACxD,MAAM,EAAE,YAAY,EAAE,GAAG,MAAM,MAAM,CAAC,4BAA4B,CAAC,CAAC;IACpE,MAAM,YAAY,GAAG,YAAY,EAAE,CAAC;IAEpC,6BAA6B;IAC7B,IAAI,OAAO;QAAE,OAAO,CAAC,IAAI,GAAG,mCAAmC,CAAC;IAChE,MAAM,EAAE,gBAAgB,EAAE,GAAG,MAAM,MAAM,CAAC,2BAA2B,CAAC,CAAC;IACvE,MAAM,YAAY,GAAG,gBAAgB,EAAE,CAAC;IAExC,wBAAwB;IACxB,IAAI,OAAO;QAAE,OAAO,CAAC,IAAI,GAAG,kCAAkC,CAAC;IAC/D,MAAM,EAAE,oBAAoB,EAAE,GAAG,MAAM,MAAM,CAAC,iCAAiC,CAAC,CAAC;IACjF,IAAI,KAAK,EAAE,MAAM,OAAO,IAAI,oBAAoB,EAAE,EAAE,CAAC;QACnD,QAAQ,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;IACzB,CAAC;IAED,IAAI,OAAO;QAAE,OAAO,CAAC,IAAI,GAAG,mBAAmB,CAAC;IAEhD,MAAM,EAAE,KAAK,EAAE,KAAK,EAAE,GAAG,kBAAkB,CAAC,QAAQ,CAAC,CAAC;IACtD,MAAM,UAAU,GAAe;QAC7B,QAAQ;QACR,YAAY,EAAE,KAAK,CAAC,YAAY;QAChC,YAAY,EAAE,KAAK,CAAC,YAAY;QAChC,cAAc,EAAE,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS;QACtC,SAAS,EAAE,KAAK;QAChB,SAAS,EAAE,KAAK;KACjB,CAAC;IAEF,+EAA+E;IAC/E,iEAAiE;IACjE,qEAAqE;IACrE,MAAM,aAAa,GAAG,OAAO,CAAC,SAAS,CAAC,CAAC;IACzC,MAAM,SAAS,GAAG,cAAc,CAAC,KAAK,EAAE,QAAQ,EAAE,aAAa,CAAC,CAAC;IAEjE,MAAM,UAAU,GAAG,IAAI,GAAG,EAAU,CAAC;IACrC,KAAK,MAAM,GAAG,IAAI,SAAS,EAAE,CAAC;QAC5B,KAAK,MAAM,CAAC,IAAI,GAAG,CAAC,eAAe,EAAE,CAAC;YACpC,UAAU,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC,QAAQ,IAAI,CAAC,CAAC,IAAI,EAAE,CAAC,CAAC;QAC5C,CAAC;IACH,CAAC;IAED,MAAM,UAAU,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS,CAAC;IAE1C,MAAM,MAAM,GAAgB;QAC1B,KAAK;QACL,SAAS;QACT,UAAU;QACV,YAAY,EAAE,UAAU,CAAC,IAAI;QAC7B,UAAU;QACV,UAAU;QACV,cAAc;QACd,gBAAgB;QAChB,YAAY;QACZ,cAAc;QACd,YAAY;KACb,CAAC;IAEF,IAAI,OAAO;QAAE,OAAO,CAAC,IAAI,EAAE,CAAC;IAE5B,IAAI,YAAY,KAAK,OAAO,EAAE,CAAC;QAC7B,MAAM,EAAE,mBAAmB,EAAE,GAAG,MAAM,MAAM,CAAC,6BAA6B,CAAC,CAAC;QAC5E,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,mBAAmB,CAAC,UAAU,CAAC,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC;IACxE,CAAC;SAAM,IAAI,YAAY,KAAK,MAAM,EAAE,CAAC;QACnC,oBAAoB,CAAC,MAAM,CAAC,CAAC;IAC/B,CAAC;SAAM,CAAC;QACN,gBAAgB,CAAC,MAAM,CAAC,CAAC;IAC3B,CAAC;IAED,+BAA+B;IAC/B,IAAI,OAAO,CAAC,SAAS,IAAI,YAAY,KAAK,MAAM,IAAI,YAAY,KAAK,OAAO,EAAE,CAAC;QAC7E,MAAM,EAAE,yBAAyB,EAAE,GAAG,MAAM,MAAM,CAAC,oBAAoB,CAAC,CAAC;QACzE,MAAM,yBAAyB,CAAC,MAAM,CAAC,CAAC;IAC1C,CAAC;IAED,IAAI,QAAQ,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,UAAU,IAAI,CAAC,CAAC,QAAQ,KAAK,MAAM,CAAC,EAAE,CAAC;QAC7E,OAAO,CAAC,QAAQ,GAAG,CAAC,CAAC;IACvB,CAAC;AACH,CAAC"}

package/dist/commands/init.d.ts

@@ -0,0 +1,2 @@
+export declare function runInit(targetDir?: string): void;
+//# sourceMappingURL=init.d.ts.map

package/dist/commands/init.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"init.d.ts","sourceRoot":"","sources":["../../src/commands/init.ts"],"names":[],"mappings":"AAMA,wBAAgB,OAAO,CAAC,SAAS,CAAC,EAAE,MAAM,GAAG,IAAI,CA4BhD"}

package/dist/commands/init.js

@@ -0,0 +1,34 @@
+import { execFileSync } from 'node:child_process';
+import { resolve, join, dirname } from 'node:path';
+import { fileURLToPath } from 'node:url';
+import { existsSync } from 'node:fs';
+import chalk from 'chalk';
+export function runInit(targetDir) {
+    const __filename = fileURLToPath(import.meta.url);
+    const __dirname = dirname(__filename);
+    const repoRoot = resolve(__dirname, '..', '..');
+    const installScript = join(repoRoot, 'install.sh');
+    const target = targetDir ? resolve(targetDir) : process.cwd();
+    if (!existsSync(installScript)) {
+        console.error(`install.sh not found at ${installScript}`);
+        console.error('Run this command from the ChainWall repository root.');
+        process.exitCode = 1;
+        return;
+    }
+    try {
+        execFileSync('bash', [installScript, target], {
+            stdio: 'inherit',
+        });
+        console.log('');
+        console.log(chalk.bold('Verify your setup:'));
+        console.log(chalk.dim(`  chainwall scan ${target === process.cwd() ? '.' : target}   # scan for existing secrets`));
+        console.log(chalk.dim(`  chainwall audit                  # check AI tool exposure`));
+        console.log(chalk.dim(`  chainwall                        # launch interactive TUI`));
+        console.log('');
+    }
+    catch (err) {
+        console.error('Init failed. Check the output above for details.');
+        process.exitCode = 1;
+    }
+}
+//# sourceMappingURL=init.js.map

package/dist/commands/init.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"init.js","sourceRoot":"","sources":["../../src/commands/init.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,YAAY,EAAE,MAAM,oBAAoB,CAAC;AAClD,OAAO,EAAE,OAAO,EAAE,IAAI,EAAE,OAAO,EAAE,MAAM,WAAW,CAAC;AACnD,OAAO,EAAE,aAAa,EAAE,MAAM,UAAU,CAAC;AACzC,OAAO,EAAE,UAAU,EAAE,MAAM,SAAS,CAAC;AACrC,OAAO,KAAK,MAAM,OAAO,CAAC;AAE1B,MAAM,UAAU,OAAO,CAAC,SAAkB;IACxC,MAAM,UAAU,GAAG,aAAa,CAAC,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;IAClD,MAAM,SAAS,GAAG,OAAO,CAAC,UAAU,CAAC,CAAC;IACtC,MAAM,QAAQ,GAAG,OAAO,CAAC,SAAS,EAAE,IAAI,EAAE,IAAI,CAAC,CAAC;IAChD,MAAM,aAAa,GAAG,IAAI,CAAC,QAAQ,EAAE,YAAY,CAAC,CAAC;IACnD,MAAM,MAAM,GAAG,SAAS,CAAC,CAAC,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,GAAG,EAAE,CAAC;IAE9D,IAAI,CAAC,UAAU,CAAC,aAAa,CAAC,EAAE,CAAC;QAC/B,OAAO,CAAC,KAAK,CAAC,2BAA2B,aAAa,EAAE,CAAC,CAAC;QAC1D,OAAO,CAAC,KAAK,CAAC,sDAAsD,CAAC,CAAC;QACtE,OAAO,CAAC,QAAQ,GAAG,CAAC,CAAC;QACrB,OAAO;IACT,CAAC;IAED,IAAI,CAAC;QACH,YAAY,CAAC,MAAM,EAAE,CAAC,aAAa,EAAE,MAAM,CAAC,EAAE;YAC5C,KAAK,EAAE,SAAS;SACjB,CAAC,CAAC;QACH,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;QAChB,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,oBAAoB,CAAC,CAAC,CAAC;QAC9C,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,oBAAoB,MAAM,KAAK,OAAO,CAAC,GAAG,EAAE,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,MAAM,gCAAgC,CAAC,CAAC,CAAC;QACpH,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,6DAA6D,CAAC,CAAC,CAAC;QACtF,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,6DAA6D,CAAC,CAAC,CAAC;QACtF,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;IAClB,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,OAAO,CAAC,KAAK,CAAC,kDAAkD,CAAC,CAAC;QAClE,OAAO,CAAC,QAAQ,GAAG,CAAC,CAAC;IACvB,CAAC;AACH,CAAC"}

package/dist/commands/remediate-cli.d.ts

@@ -0,0 +1,3 @@
+import type { AuditResult } from '../auditor/types.js';
+export declare function runInteractiveRemediation(result: AuditResult): Promise<void>;
+//# sourceMappingURL=remediate-cli.d.ts.map

package/dist/commands/remediate-cli.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"remediate-cli.d.ts","sourceRoot":"","sources":["../../src/commands/remediate-cli.ts"],"names":[],"mappings":"AAEA,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,qBAAqB,CAAC;AASvD,wBAAsB,yBAAyB,CAAC,MAAM,EAAE,WAAW,GAAG,OAAO,CAAC,IAAI,CAAC,CAwGlF"}

package/dist/commands/remediate-cli.js

@@ -0,0 +1,96 @@
+import { createInterface } from 'node:readline';
+import chalk from 'chalk';
+import { getActionsForMCPServer, getActionsForVSCodeExtension, getActionsForEnvExposure, getActionsForPermissionFinding, } from '../auditor/remediation.js';
+export async function runInteractiveRemediation(result) {
+    const allActions = [];
+    // Collect all available actions
+    if (result.mcpServers) {
+        for (const server of result.mcpServers) {
+            allActions.push(...getActionsForMCPServer(server));
+        }
+    }
+    if (result.vsCodeExtensions) {
+        for (const ext of result.vsCodeExtensions) {
+            allActions.push(...getActionsForVSCodeExtension(ext));
+        }
+    }
+    if (result.envExposures) {
+        for (const env of result.envExposures) {
+            allActions.push(...getActionsForEnvExposure(env));
+        }
+    }
+    // Permission findings from system scan
+    for (const f of result.systemFindings) {
+        allActions.push(...getActionsForPermissionFinding(f));
+    }
+    if (allActions.length === 0) {
+        console.log('');
+        console.log(chalk.green('No remediation actions available.'));
+        return;
+    }
+    console.log('');
+    console.log(chalk.bold('Available Remediation Actions'));
+    console.log(chalk.dim('\u2500'.repeat(50)));
+    console.log('');
+    for (let i = 0; i < allActions.length; i++) {
+        const action = allActions[i];
+        const badge = action.riskLevel === 'caution'
+            ? chalk.yellow('[CAUTION]')
+            : chalk.green('[SAFE]');
+        console.log(`  ${chalk.bold(String(i + 1))}. ${badge} ${action.label}`);
+        console.log(chalk.dim(`     ${action.description}`));
+    }
+    console.log('');
+    console.log(chalk.dim('Enter a number to execute, or q to skip.'));
+    const rl = createInterface({
+        input: process.stdin,
+        output: process.stdout,
+    });
+    const question = (prompt) => {
+        return new Promise((resolve) => {
+            rl.question(prompt, resolve);
+        });
+    };
+    try {
+        while (true) {
+            const answer = await question(chalk.bold('\n> '));
+            const trimmed = answer.trim().toLowerCase();
+            if (trimmed === 'q' || trimmed === 'quit' || trimmed === '') {
+                break;
+            }
+            const num = parseInt(trimmed, 10);
+            if (isNaN(num) || num < 1 || num > allActions.length) {
+                console.log(chalk.dim(`Enter 1-${allActions.length} or q to quit.`));
+                continue;
+            }
+            const action = allActions[num - 1];
+            // Caution actions require confirmation
+            if (action.riskLevel === 'caution') {
+                const confirm = await question(chalk.yellow(`  This will modify ${action.target}. Type "yes" to proceed: `));
+                if (confirm.trim().toLowerCase() !== 'yes') {
+                    console.log(chalk.dim('  Cancelled.'));
+                    continue;
+                }
+            }
+            try {
+                const result = await action.execute();
+                if (result.success) {
+                    console.log(chalk.green(`  \u2713 ${result.message}`));
+                    if (result.backupPath) {
+                        console.log(chalk.dim(`  Backup: ${result.backupPath}`));
+                    }
+                }
+                else {
+                    console.log(chalk.red(`  \u2717 ${result.message}`));
+                }
+            }
+            catch (err) {
+                console.log(chalk.red(`  Error: ${err instanceof Error ? err.message : String(err)}`));
+            }
+        }
+    }
+    finally {
+        rl.close();
+    }
+}
+//# sourceMappingURL=remediate-cli.js.map

package/dist/commands/remediate-cli.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"remediate-cli.js","sourceRoot":"","sources":["../../src/commands/remediate-cli.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,eAAe,EAAE,MAAM,eAAe,CAAC;AAChD,OAAO,KAAK,MAAM,OAAO,CAAC;AAG1B,OAAO,EACL,sBAAsB,EACtB,4BAA4B,EAC5B,wBAAwB,EACxB,8BAA8B,GAC/B,MAAM,2BAA2B,CAAC;AAEnC,MAAM,CAAC,KAAK,UAAU,yBAAyB,CAAC,MAAmB;IACjE,MAAM,UAAU,GAAwB,EAAE,CAAC;IAE3C,gCAAgC;IAChC,IAAI,MAAM,CAAC,UAAU,EAAE,CAAC;QACtB,KAAK,MAAM,MAAM,IAAI,MAAM,CAAC,UAAU,EAAE,CAAC;YACvC,UAAU,CAAC,IAAI,CAAC,GAAG,sBAAsB,CAAC,MAAM,CAAC,CAAC,CAAC;QACrD,CAAC;IACH,CAAC;IAED,IAAI,MAAM,CAAC,gBAAgB,EAAE,CAAC;QAC5B,KAAK,MAAM,GAAG,IAAI,MAAM,CAAC,gBAAgB,EAAE,CAAC;YAC1C,UAAU,CAAC,IAAI,CAAC,GAAG,4BAA4B,CAAC,GAAG,CAAC,CAAC,CAAC;QACxD,CAAC;IACH,CAAC;IAED,IAAI,MAAM,CAAC,YAAY,EAAE,CAAC;QACxB,KAAK,MAAM,GAAG,IAAI,MAAM,CAAC,YAAY,EAAE,CAAC;YACtC,UAAU,CAAC,IAAI,CAAC,GAAG,wBAAwB,CAAC,GAAG,CAAC,CAAC,CAAC;QACpD,CAAC;IACH,CAAC;IAED,uCAAuC;IACvC,KAAK,MAAM,CAAC,IAAI,MAAM,CAAC,cAAc,EAAE,CAAC;QACtC,UAAU,CAAC,IAAI,CAAC,GAAG,8BAA8B,CAAC,CAAC,CAAC,CAAC,CAAC;IACxD,CAAC;IAED,IAAI,UAAU,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QAC5B,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;QAChB,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,KAAK,CAAC,mCAAmC,CAAC,CAAC,CAAC;QAC9D,OAAO;IACT,CAAC;IAED,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;IAChB,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,+BAA+B,CAAC,CAAC,CAAC;IACzD,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,QAAQ,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC;IAC5C,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;IAEhB,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,UAAU,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;QAC3C,MAAM,MAAM,GAAG,UAAU,CAAC,CAAC,CAAC,CAAC;QAC7B,MAAM,KAAK,GAAG,MAAM,CAAC,SAAS,KAAK,SAAS;YAC1C,CAAC,CAAC,KAAK,CAAC,MAAM,CAAC,WAAW,CAAC;YAC3B,CAAC,CAAC,KAAK,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC;QAC1B,OAAO,CAAC,GAAG,CAAC,KAAK,KAAK,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,KAAK,KAAK,IAAI,MAAM,CAAC,KAAK,EAAE,CAAC,CAAC;QACxE,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,QAAQ,MAAM,CAAC,WAAW,EAAE,CAAC,CAAC,CAAC;IACvD,CAAC;IAED,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;IAChB,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,0CAA0C,CAAC,CAAC,CAAC;IAEnE,MAAM,EAAE,GAAG,eAAe,CAAC;QACzB,KAAK,EAAE,OAAO,CAAC,KAAK;QACpB,MAAM,EAAE,OAAO,CAAC,MAAM;KACvB,CAAC,CAAC;IAEH,MAAM,QAAQ,GAAG,CAAC,MAAc,EAAmB,EAAE;QACnD,OAAO,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,EAAE;YAC7B,EAAE,CAAC,QAAQ,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;QAC/B,CAAC,CAAC,CAAC;IACL,CAAC,CAAC;IAEF,IAAI,CAAC;QACH,OAAO,IAAI,EAAE,CAAC;YACZ,MAAM,MAAM,GAAG,MAAM,QAAQ,CAAC,KAAK,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC;YAClD,MAAM,OAAO,GAAG,MAAM,CAAC,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;YAE5C,IAAI,OAAO,KAAK,GAAG,IAAI,OAAO,KAAK,MAAM,IAAI,OAAO,KAAK,EAAE,EAAE,CAAC;gBAC5D,MAAM;YACR,CAAC;YAED,MAAM,GAAG,GAAG,QAAQ,CAAC,OAAO,EAAE,EAAE,CAAC,CAAC;YAClC,IAAI,KAAK,CAAC,GAAG,CAAC,IAAI,GAAG,GAAG,CAAC,IAAI,GAAG,GAAG,UAAU,CAAC,MAAM,EAAE,CAAC;gBACrD,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,WAAW,UAAU,CAAC,MAAM,gBAAgB,CAAC,CAAC,CAAC;gBACrE,SAAS;YACX,CAAC;YAED,MAAM,MAAM,GAAG,UAAU,CAAC,GAAG,GAAG,CAAC,CAAC,CAAC;YAEnC,uCAAuC;YACvC,IAAI,MAAM,CAAC,SAAS,KAAK,SAAS,EAAE,CAAC;gBACnC,MAAM,OAAO,GAAG,MAAM,QAAQ,CAAC,KAAK,CAAC,MAAM,CAAC,sBAAsB,MAAM,CAAC,MAAM,2BAA2B,CAAC,CAAC,CAAC;gBAC7G,IAAI,OAAO,CAAC,IAAI,EAAE,CAAC,WAAW,EAAE,KAAK,KAAK,EAAE,CAAC;oBAC3C,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,cAAc,CAAC,CAAC,CAAC;oBACvC,SAAS;gBACX,CAAC;YACH,CAAC;YAED,IAAI,CAAC;gBACH,MAAM,MAAM,GAAG,MAAM,MAAM,CAAC,OAAO,EAAE,CAAC;gBACtC,IAAI,MAAM,CAAC,OAAO,EAAE,CAAC;oBACnB,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,KAAK,CAAC,YAAY,MAAM,CAAC,OAAO,EAAE,CAAC,CAAC,CAAC;oBACvD,IAAI,MAAM,CAAC,UAAU,EAAE,CAAC;wBACtB,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,aAAa,MAAM,CAAC,UAAU,EAAE,CAAC,CAAC,CAAC;oBAC3D,CAAC;gBACH,CAAC;qBAAM,CAAC;oBACN,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,YAAY,MAAM,CAAC,OAAO,EAAE,CAAC,CAAC,CAAC;gBACvD,CAAC;YACH,CAAC;YAAC,OAAO,GAAG,EAAE,CAAC;gBACb,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,YAAY,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC,CAAC;YACzF,CAAC;QACH,CAAC;IACH,CAAC;YAAS,CAAC;QACT,EAAE,CAAC,KAAK,EAAE,CAAC;IACb,CAAC;AACH,CAAC"}

package/dist/commands/scan.d.ts

@@ -0,0 +1,11 @@
+export interface ScanOptions {
+    json?: boolean;
+    cryptoOnly?: boolean;
+    verbose?: boolean;
+    system?: boolean;
+    format?: string;
+    includeTests?: boolean;
+    grouped?: boolean;
+}
+export declare function runScan(targetDir: string, options: ScanOptions): Promise<void>;
+//# sourceMappingURL=scan.d.ts.map

package/dist/commands/scan.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"scan.d.ts","sourceRoot":"","sources":["../../src/commands/scan.ts"],"names":[],"mappings":"AAeA,MAAM,WAAW,WAAW;IAC1B,IAAI,CAAC,EAAE,OAAO,CAAC;IACf,UAAU,CAAC,EAAE,OAAO,CAAC;IACrB,OAAO,CAAC,EAAE,OAAO,CAAC;IAClB,MAAM,CAAC,EAAE,OAAO,CAAC;IACjB,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,YAAY,CAAC,EAAE,OAAO,CAAC;IACvB,OAAO,CAAC,EAAE,OAAO,CAAC;CACnB;AAED,wBAAsB,OAAO,CAAC,SAAS,EAAE,MAAM,EAAE,OAAO,EAAE,WAAW,GAAG,OAAO,CAAC,IAAI,CAAC,CAyIpF"}

package/dist/commands/scan.js

@@ -0,0 +1,138 @@
+import { resolve } from 'node:path';
+import { existsSync, statSync } from 'node:fs';
+import ora from 'ora';
+import chalk from 'chalk';
+import { loadConfig } from '../config.js';
+import { allRules, cryptoRules } from '../rules/index.js';
+import { walkFiles, walkSystemTargets } from '../scanner/filesystem-scanner.js';
+import { createRuleEngine } from '../scanner/rule-engine.js';
+import { calculateRiskScore } from '../reporter/risk-scorer.js';
+import { printTerminalReport, printGroupedReport } from '../reporter/terminal-report.js';
+import { printJsonReport } from '../reporter/json-report.js';
+import { detectInstalledTools } from '../auditor/tool-detector.js';
+export async function runScan(targetDir, options) {
+    const isDefaultDir = targetDir === '.';
+    const dir = resolve(targetDir);
+    if (!isDefaultDir && (!existsSync(dir) || !statSync(dir).isDirectory())) {
+        console.error(`chainwall: ${dir} is not a valid directory`);
+        process.exitCode = 1;
+        return;
+    }
+    const config = loadConfig(dir);
+    const rules = options.cryptoOnly ? cryptoRules : allRules;
+    const engine = createRuleEngine({ rules, config });
+    const spinner = (options.json || !process.stdout.isTTY) ? null : ora('Scanning files...').start();
+    const startTime = Date.now();
+    const findings = [];
+    const stats = { filesScanned: 0, filesSkipped: 0 };
+    if (options.system) {
+        // --system flag: system targets only
+        if (spinner)
+            spinner.text = 'System scan: targeting credential locations...';
+        const { getSystemTargets, getPermissionTargets } = await import('../scanner/system-targets.js');
+        const { checkPermissions } = await import('../scanner/permission-checker.js');
+        const targets = getSystemTargets();
+        for await (const file of walkSystemTargets(targets, stats)) {
+            const fileFindings = engine.scanFile(file.path, file.content);
+            findings.push(...fileFindings);
+            if (spinner && stats.filesScanned % 50 === 0) {
+                spinner.text = `System scan: ${stats.filesScanned} files... (${findings.length} findings)`;
+            }
+        }
+        // Permission checks
+        if (spinner)
+            spinner.text = 'Checking file permissions...';
+        const permFindings = await checkPermissions(getPermissionTargets());
+        findings.push(...permFindings);
+    }
+    else if (isDefaultDir) {
+        // No args: scan cwd + system targets + permissions
+        const scanRoot = dir;
+        if (spinner)
+            spinner.text = `Scanning ${scanRoot}...`;
+        const walkOpts = {
+            maxDepth: 10,
+            maxFiles: 50_000,
+            extraSkipDirs: config.skipDirs,
+            includeTests: options.includeTests,
+        };
+        for await (const file of walkFiles(scanRoot, stats, undefined, walkOpts)) {
+            const fileFindings = engine.scanFile(file.path, file.content);
+            findings.push(...fileFindings);
+            if (spinner && stats.filesScanned % 100 === 0) {
+                spinner.text = `Scanned ${stats.filesScanned} files... (${findings.length} findings)`;
+            }
+        }
+        // System targets
+        if (spinner)
+            spinner.text = 'System scan: targeting credential locations...';
+        const { getSystemTargets, getPermissionTargets } = await import('../scanner/system-targets.js');
+        const { checkPermissions } = await import('../scanner/permission-checker.js');
+        for await (const file of walkSystemTargets(getSystemTargets(), stats)) {
+            const fileFindings = engine.scanFile(file.path, file.content);
+            findings.push(...fileFindings);
+        }
+        if (spinner)
+            spinner.text = 'Checking file permissions...';
+        const permFindings = await checkPermissions(getPermissionTargets());
+        findings.push(...permFindings);
+    }
+    else {
+        // Explicit dir: scan only that directory
+        const walkOpts = {
+            extraSkipDirs: config.skipDirs,
+            includeTests: options.includeTests,
+        };
+        for await (const file of walkFiles(dir, stats, undefined, walkOpts)) {
+            const fileFindings = engine.scanFile(file.path, file.content);
+            findings.push(...fileFindings);
+            if (spinner && stats.filesScanned % 100 === 0) {
+                spinner.text = `Scanned ${stats.filesScanned} files... (${findings.length} findings)`;
+            }
+        }
+    }
+    // Prompt injection scan
+    if (spinner)
+        spinner.text = 'Scanning for prompt injection...';
+    const { scanInstructionFiles } = await import('../scanner/injection-scanner.js');
+    for await (const finding of scanInstructionFiles()) {
+        findings.push(finding);
+    }
+    const scanDurationMs = Date.now() - startTime;
+    const { score, label } = calculateRiskScore(findings);
+    const result = {
+        findings,
+        filesScanned: stats.filesScanned,
+        filesSkipped: stats.filesSkipped,
+        scanDurationMs,
+        riskScore: score,
+        riskLabel: label,
+    };
+    if (spinner)
+        spinner.stop();
+    const outputFormat = options.format || (options.json ? 'json' : 'text');
+    if (outputFormat === 'sarif') {
+        const { generateSarifReport } = await import('../reporter/sarif-report.js');
+        console.log(JSON.stringify(generateSarifReport(result), null, 2));
+    }
+    else if (outputFormat === 'json') {
+        printJsonReport(result);
+    }
+    else if (options.grouped) {
+        printGroupedReport(result, options.verbose ?? false);
+    }
+    else {
+        printTerminalReport(result, options.verbose ?? false);
+    }
+    if (outputFormat !== 'sarif' && outputFormat !== 'json' && !options.json) {
+        const tools = detectInstalledTools();
+        if (tools.length > 0) {
+            console.log(chalk.dim(`${tools.length} AI tool(s) detected. Run 'chainwall audit' for full access map.`));
+            console.log('');
+        }
+    }
+    if (findings.some((f) => f.severity === 'critical' || f.severity === 'high')) {
+        process.exitCode = 1;
+    }
+}
+//# sourceMappingURL=scan.js.map

package/dist/commands/scan.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"scan.js","sourceRoot":"","sources":["../../src/commands/scan.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,OAAO,EAAE,MAAM,WAAW,CAAC;AACpC,OAAO,EAAE,UAAU,EAAE,QAAQ,EAAE,MAAM,SAAS,CAAC;AAC/C,OAAO,GAAG,MAAM,KAAK,CAAC;AACtB,OAAO,KAAK,MAAM,OAAO,CAAC;AAC1B,OAAO,EAAE,UAAU,EAAE,MAAM,cAAc,CAAC;AAC1C,OAAO,EAAE,QAAQ,EAAE,WAAW,EAAE,MAAM,mBAAmB,CAAC;AAC1D,OAAO,EAAE,SAAS,EAAE,iBAAiB,EAAE,MAAM,kCAAkC,CAAC;AAEhF,OAAO,EAAE,gBAAgB,EAAE,MAAM,2BAA2B,CAAC;AAC7D,OAAO,EAAE,kBAAkB,EAAE,MAAM,4BAA4B,CAAC;AAChE,OAAO,EAAE,mBAAmB,EAAE,kBAAkB,EAAE,MAAM,gCAAgC,CAAC;AACzF,OAAO,EAAE,eAAe,EAAE,MAAM,4BAA4B,CAAC;AAC7D,OAAO,EAAE,oBAAoB,EAAE,MAAM,6BAA6B,CAAC;AAanE,MAAM,CAAC,KAAK,UAAU,OAAO,CAAC,SAAiB,EAAE,OAAoB;IACnE,MAAM,YAAY,GAAG,SAAS,KAAK,GAAG,CAAC;IACvC,MAAM,GAAG,GAAG,OAAO,CAAC,SAAS,CAAC,CAAC;IAE/B,IAAI,CAAC,YAAY,IAAI,CAAC,CAAC,UAAU,CAAC,GAAG,CAAC,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,WAAW,EAAE,CAAC,EAAE,CAAC;QACxE,OAAO,CAAC,KAAK,CAAC,cAAc,GAAG,2BAA2B,CAAC,CAAC;QAC5D,OAAO,CAAC,QAAQ,GAAG,CAAC,CAAC;QACrB,OAAO;IACT,CAAC;IAED,MAAM,MAAM,GAAG,UAAU,CAAC,GAAG,CAAC,CAAC;IAE/B,MAAM,KAAK,GAAG,OAAO,CAAC,UAAU,CAAC,CAAC,CAAC,WAAW,CAAC,CAAC,CAAC,QAAQ,CAAC;IAC1D,MAAM,MAAM,GAAG,gBAAgB,CAAC,EAAE,KAAK,EAAE,MAAM,EAAE,CAAC,CAAC;IAEnD,MAAM,OAAO,GAAG,CAAC,OAAO,CAAC,IAAI,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,GAAG,CAAC,mBAAmB,CAAC,CAAC,KAAK,EAAE,CAAC;IAClG,MAAM,SAAS,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;IAE7B,MAAM,QAAQ,GAAkB,EAAE,CAAC;IACnC,MAAM,KAAK,GAAc,EAAE,YAAY,EAAE,CAAC,EAAE,YAAY,EAAE,CAAC,EAAE,CAAC;IAE9D,IAAI,OAAO,CAAC,MAAM,EAAE,CAAC;QACnB,qCAAqC;QACrC,IAAI,OAAO;YAAE,OAAO,CAAC,IAAI,GAAG,gDAAgD,CAAC;QAE7E,MAAM,EAAE,gBAAgB,EAAE,oBAAoB,EAAE,GAAG,MAAM,MAAM,CAAC,8BAA8B,CAAC,CAAC;QAChG,MAAM,EAAE,gBAAgB,EAAE,GAAG,MAAM,MAAM,CAAC,kCAAkC,CAAC,CAAC;QAE9E,MAAM,OAAO,GAAG,gBAAgB,EAAE,CAAC;QACnC,IAAI,KAAK,EAAE,MAAM,IAAI,IAAI,iBAAiB,CAAC,OAAO,EAAE,KAAK,CAAC,EAAE,CAAC;YAC3D,MAAM,YAAY,GAAG,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,IAAI,EAAE,IAAI,CAAC,OAAO,CAAC,CAAC;YAC9D,QAAQ,CAAC,IAAI,CAAC,GAAG,YAAY,CAAC,CAAC;YAE/B,IAAI,OAAO,IAAI,KAAK,CAAC,YAAY,GAAG,EAAE,KAAK,CAAC,EAAE,CAAC;gBAC7C,OAAO,CAAC,IAAI,GAAG,gBAAgB,KAAK,CAAC,YAAY,cAAc,QAAQ,CAAC,MAAM,YAAY,CAAC;YAC7F,CAAC;QACH,CAAC;QAED,oBAAoB;QACpB,IAAI,OAAO;YAAE,OAAO,CAAC,IAAI,GAAG,8BAA8B,CAAC;QAC3D,MAAM,YAAY,GAAG,MAAM,gBAAgB,CAAC,oBAAoB,EAAE,CAAC,CAAC;QACpE,QAAQ,CAAC,IAAI,CAAC,GAAG,YAAY,CAAC,CAAC;IACjC,CAAC;SAAM,IAAI,YAAY,EAAE,CAAC;QACxB,mDAAmD;QACnD,MAAM,QAAQ,GAAG,GAAG,CAAC;QACrB,IAAI,OAAO;YAAE,OAAO,CAAC,IAAI,GAAG,YAAY,QAAQ,KAAK,CAAC;QAEtD,MAAM,QAAQ,GAAgB;YAC5B,QAAQ,EAAE,EAAE;YACZ,QAAQ,EAAE,MAAM;YAChB,aAAa,EAAE,MAAM,CAAC,QAAQ;YAC9B,YAAY,EAAE,OAAO,CAAC,YAAY;SACnC,CAAC;QACF,IAAI,KAAK,EAAE,MAAM,IAAI,IAAI,SAAS,CAAC,QAAQ,EAAE,KAAK,EAAE,SAAS,EAAE,QAAQ,CAAC,EAAE,CAAC;YACzE,MAAM,YAAY,GAAG,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,IAAI,EAAE,IAAI,CAAC,OAAO,CAAC,CAAC;YAC9D,QAAQ,CAAC,IAAI,CAAC,GAAG,YAAY,CAAC,CAAC;YAE/B,IAAI,OAAO,IAAI,KAAK,CAAC,YAAY,GAAG,GAAG,KAAK,CAAC,EAAE,CAAC;gBAC9C,OAAO,CAAC,IAAI,GAAG,WAAW,KAAK,CAAC,YAAY,cAAc,QAAQ,CAAC,MAAM,YAAY,CAAC;YACxF,CAAC;QACH,CAAC;QAED,iBAAiB;QACjB,IAAI,OAAO;YAAE,OAAO,CAAC,IAAI,GAAG,gDAAgD,CAAC;QAE7E,MAAM,EAAE,gBAAgB,EAAE,oBAAoB,EAAE,GAAG,MAAM,MAAM,CAAC,8BAA8B,CAAC,CAAC;QAChG,MAAM,EAAE,gBAAgB,EAAE,GAAG,MAAM,MAAM,CAAC,kCAAkC,CAAC,CAAC;QAE9E,IAAI,KAAK,EAAE,MAAM,IAAI,IAAI,iBAAiB,CAAC,gBAAgB,EAAE,EAAE,KAAK,CAAC,EAAE,CAAC;YACtE,MAAM,YAAY,GAAG,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,IAAI,EAAE,IAAI,CAAC,OAAO,CAAC,CAAC;YAC9D,QAAQ,CAAC,IAAI,CAAC,GAAG,YAAY,CAAC,CAAC;QACjC,CAAC;QAED,IAAI,OAAO;YAAE,OAAO,CAAC,IAAI,GAAG,8BAA8B,CAAC;QAC3D,MAAM,YAAY,GAAG,MAAM,gBAAgB,CAAC,oBAAoB,EAAE,CAAC,CAAC;QACpE,QAAQ,CAAC,IAAI,CAAC,GAAG,YAAY,CAAC,CAAC;IACjC,CAAC;SAAM,CAAC;QACN,yCAAyC;QACzC,MAAM,QAAQ,GAAgB;YAC5B,aAAa,EAAE,MAAM,CAAC,QAAQ;YAC9B,YAAY,EAAE,OAAO,CAAC,YAAY;SACnC,CAAC;QACF,IAAI,KAAK,EAAE,MAAM,IAAI,IAAI,SAAS,CAAC,GAAG,EAAE,KAAK,EAAE,SAAS,EAAE,QAAQ,CAAC,EAAE,CAAC;YACpE,MAAM,YAAY,GAAG,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,IAAI,EAAE,IAAI,CAAC,OAAO,CAAC,CAAC;YAC9D,QAAQ,CAAC,IAAI,CAAC,GAAG,YAAY,CAAC,CAAC;YAE/B,IAAI,OAAO,IAAI,KAAK,CAAC,YAAY,GAAG,GAAG,KAAK,CAAC,EAAE,CAAC;gBAC9C,OAAO,CAAC,IAAI,GAAG,WAAW,KAAK,CAAC,YAAY,cAAc,QAAQ,CAAC,MAAM,YAAY,CAAC;YACxF,CAAC;QACH,CAAC;IACH,CAAC;IAED,wBAAwB;IACxB,IAAI,OAAO;QAAE,OAAO,CAAC,IAAI,GAAG,kCAAkC,CAAC;IAC/D,MAAM,EAAE,oBAAoB,EAAE,GAAG,MAAM,MAAM,CAAC,iCAAiC,CAAC,CAAC;IACjF,IAAI,KAAK,EAAE,MAAM,OAAO,IAAI,oBAAoB,EAAE,EAAE,CAAC;QACnD,QAAQ,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;IACzB,CAAC;IAED,MAAM,cAAc,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS,CAAC;IAC9C,MAAM,EAAE,KAAK,EAAE,KAAK,EAAE,GAAG,kBAAkB,CAAC,QAAQ,CAAC,CAAC;IAEtD,MAAM,MAAM,GAAe;QACzB,QAAQ;QACR,YAAY,EAAE,KAAK,CAAC,YAAY;QAChC,YAAY,EAAE,KAAK,CAAC,YAAY;QAChC,cAAc;QACd,SAAS,EAAE,KAAK;QAChB,SAAS,EAAE,KAAK;KACjB,CAAC;IAEF,IAAI,OAAO;QAAE,OAAO,CAAC,IAAI,EAAE,CAAC;IAE5B,MAAM,YAAY,GAAG,OAAO,CAAC,MAAM,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC;IAExE,IAAI,YAAY,KAAK,OAAO,EAAE,CAAC;QAC7B,MAAM,EAAE,mBAAmB,EAAE,GAAG,MAAM,MAAM,CAAC,6BAA6B,CAAC,CAAC;QAC5E,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,mBAAmB,CAAC,MAAM,CAAC,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC;IACpE,CAAC;SAAM,IAAI,YAAY,KAAK,MAAM,EAAE,CAAC;QACnC,eAAe,CAAC,MAAM,CAAC,CAAC;IAC1B,CAAC;SAAM,IAAI,OAAO,CAAC,OAAO,EAAE,CAAC;QAC3B,kBAAkB,CAAC,MAAM,EAAE,OAAO,CAAC,OAAO,IAAI,KAAK,CAAC,CAAC;IACvD,CAAC;SAAM,CAAC;QACN,mBAAmB,CAAC,MAAM,EAAE,OAAO,CAAC,OAAO,IAAI,KAAK,CAAC,CAAC;IACxD,CAAC;IAED,IAAI,YAAY,KAAK,OAAO,IAAI,YAAY,KAAK,MAAM,IAAI,CAAC,OAAO,CAAC,IAAI,EAAE,CAAC;QACzE,MAAM,KAAK,GAAG,oBAAoB,EAAE,CAAC;QACrC,IAAI,KAAK,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YACrB,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,GAAG,KAAK,CAAC,MAAM,kEAAkE,CAAC,CAAC,CAAC;YAC1G,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;QAClB,CAAC;IACH,CAAC;IAED,IAAI,QAAQ,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,UAAU,IAAI,CAAC,CAAC,QAAQ,KAAK,MAAM,CAAC,EAAE,CAAC;QAC7E,OAAO,CAAC,QAAQ,GAAG,CAAC,CAAC;IACvB,CAAC;AACH,CAAC"}

package/dist/commands/watch.d.ts

@@ -0,0 +1,6 @@
+export interface WatchOptions {
+    verbose?: boolean;
+    json?: boolean;
+}
+export declare function runWatch(targetDir: string, options: WatchOptions): Promise<void>;
+//# sourceMappingURL=watch.d.ts.map

package/dist/commands/watch.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"watch.d.ts","sourceRoot":"","sources":["../../src/commands/watch.ts"],"names":[],"mappings":"AAkBA,MAAM,WAAW,YAAY;IAC3B,OAAO,CAAC,EAAE,OAAO,CAAC;IAClB,IAAI,CAAC,EAAE,OAAO,CAAC;CAChB;AAwBD,wBAAsB,QAAQ,CAAC,SAAS,EAAE,MAAM,EAAE,OAAO,EAAE,YAAY,GAAG,OAAO,CAAC,IAAI,CAAC,CA2LtF"}