npm - chainwall - Versions diffs - 0.1.0 - Mend

chainwall 0.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (348) hide show

package/LICENSE +21 -0
package/README.md +278 -0
package/commands/security-scan.md +35 -0
package/dist/auditor/access-mapper.d.ts +3 -0
package/dist/auditor/access-mapper.d.ts.map +1 -0
package/dist/auditor/access-mapper.js +15 -0
package/dist/auditor/access-mapper.js.map +1 -0
package/dist/auditor/cli-detector.d.ts +7 -0
package/dist/auditor/cli-detector.d.ts.map +1 -0
package/dist/auditor/cli-detector.js +63 -0
package/dist/auditor/cli-detector.js.map +1 -0
package/dist/auditor/cross-reference.d.ts +4 -0
package/dist/auditor/cross-reference.d.ts.map +1 -0
package/dist/auditor/cross-reference.js +16 -0
package/dist/auditor/cross-reference.js.map +1 -0
package/dist/auditor/env-auditor.d.ts +9 -0
package/dist/auditor/env-auditor.d.ts.map +1 -0
package/dist/auditor/env-auditor.js +83 -0
package/dist/auditor/env-auditor.js.map +1 -0
package/dist/auditor/mcp-analyzer.d.ts +11 -0
package/dist/auditor/mcp-analyzer.d.ts.map +1 -0
package/dist/auditor/mcp-analyzer.js +145 -0
package/dist/auditor/mcp-analyzer.js.map +1 -0
package/dist/auditor/mcp-detector.d.ts +17 -0
package/dist/auditor/mcp-detector.d.ts.map +1 -0
package/dist/auditor/mcp-detector.js +86 -0
package/dist/auditor/mcp-detector.js.map +1 -0
package/dist/auditor/remediation.d.ts +26 -0
package/dist/auditor/remediation.d.ts.map +1 -0
package/dist/auditor/remediation.js +222 -0
package/dist/auditor/remediation.js.map +1 -0
package/dist/auditor/tool-detector.d.ts +15 -0
package/dist/auditor/tool-detector.d.ts.map +1 -0
package/dist/auditor/tool-detector.js +241 -0
package/dist/auditor/tool-detector.js.map +1 -0
package/dist/auditor/types.d.ts +31 -0
package/dist/auditor/types.d.ts.map +1 -0
package/dist/auditor/types.js +2 -0
package/dist/auditor/types.js.map +1 -0
package/dist/auditor/vscode-extension-scanner.d.ts +8 -0
package/dist/auditor/vscode-extension-scanner.d.ts.map +1 -0
package/dist/auditor/vscode-extension-scanner.js +51 -0
package/dist/auditor/vscode-extension-scanner.js.map +1 -0
package/dist/cli.d.ts +3 -0
package/dist/cli.d.ts.map +1 -0
package/dist/cli.js +159 -0
package/dist/cli.js.map +1 -0
package/dist/commands/audit.d.ts +8 -0
package/dist/commands/audit.d.ts.map +1 -0
package/dist/commands/audit.js +151 -0
package/dist/commands/audit.js.map +1 -0
package/dist/commands/init.d.ts +2 -0
package/dist/commands/init.d.ts.map +1 -0
package/dist/commands/init.js +34 -0
package/dist/commands/init.js.map +1 -0
package/dist/commands/remediate-cli.d.ts +3 -0
package/dist/commands/remediate-cli.d.ts.map +1 -0
package/dist/commands/remediate-cli.js +96 -0
package/dist/commands/remediate-cli.js.map +1 -0
package/dist/commands/scan.d.ts +11 -0
package/dist/commands/scan.d.ts.map +1 -0
package/dist/commands/scan.js +138 -0
package/dist/commands/scan.js.map +1 -0
package/dist/commands/watch.d.ts +6 -0
package/dist/commands/watch.d.ts.map +1 -0
package/dist/commands/watch.js +203 -0
package/dist/commands/watch.js.map +1 -0
package/dist/config.d.ts +19 -0
package/dist/config.d.ts.map +1 -0
package/dist/config.js +235 -0
package/dist/config.js.map +1 -0
package/dist/mcp-server/index.d.ts +3 -0
package/dist/mcp-server/index.d.ts.map +1 -0
package/dist/mcp-server/index.js +69 -0
package/dist/mcp-server/index.js.map +1 -0
package/dist/mcp-server/schemas.d.ts +13 -0
package/dist/mcp-server/schemas.d.ts.map +1 -0
package/dist/mcp-server/schemas.js +13 -0
package/dist/mcp-server/schemas.js.map +1 -0
package/dist/mcp-server/tools/audit-status.d.ts +3 -0
package/dist/mcp-server/tools/audit-status.d.ts.map +1 -0
package/dist/mcp-server/tools/audit-status.js +46 -0
package/dist/mcp-server/tools/audit-status.js.map +1 -0
package/dist/mcp-server/tools/check-command.d.ts +4 -0
package/dist/mcp-server/tools/check-command.d.ts.map +1 -0
package/dist/mcp-server/tools/check-command.js +30 -0
package/dist/mcp-server/tools/check-command.js.map +1 -0
package/dist/mcp-server/tools/scan-content.d.ts +4 -0
package/dist/mcp-server/tools/scan-content.d.ts.map +1 -0
package/dist/mcp-server/tools/scan-content.js +18 -0
package/dist/mcp-server/tools/scan-content.js.map +1 -0
package/dist/mcp-server/tools/scan-file.d.ts +4 -0
package/dist/mcp-server/tools/scan-file.d.ts.map +1 -0
package/dist/mcp-server/tools/scan-file.js +48 -0
package/dist/mcp-server/tools/scan-file.js.map +1 -0
package/dist/mcp-server/types.d.ts +15 -0
package/dist/mcp-server/types.d.ts.map +1 -0
package/dist/mcp-server/types.js +2 -0
package/dist/mcp-server/types.js.map +1 -0
package/dist/reporter/audit-report.d.ts +4 -0
package/dist/reporter/audit-report.d.ts.map +1 -0
package/dist/reporter/audit-report.js +186 -0
package/dist/reporter/audit-report.js.map +1 -0
package/dist/reporter/json-report.d.ts +3 -0
package/dist/reporter/json-report.d.ts.map +1 -0
package/dist/reporter/json-report.js +4 -0
package/dist/reporter/json-report.js.map +1 -0
package/dist/reporter/remediation-text.d.ts +3 -0
package/dist/reporter/remediation-text.d.ts.map +1 -0
package/dist/reporter/remediation-text.js +12 -0
package/dist/reporter/remediation-text.js.map +1 -0
package/dist/reporter/risk-scorer.d.ts +8 -0
package/dist/reporter/risk-scorer.d.ts.map +1 -0
package/dist/reporter/risk-scorer.js +40 -0
package/dist/reporter/risk-scorer.js.map +1 -0
package/dist/reporter/sarif-report.d.ts +3 -0
package/dist/reporter/sarif-report.d.ts.map +1 -0
package/dist/reporter/sarif-report.js +80 -0
package/dist/reporter/sarif-report.js.map +1 -0
package/dist/reporter/shared.d.ts +11 -0
package/dist/reporter/shared.d.ts.map +1 -0
package/dist/reporter/shared.js +85 -0
package/dist/reporter/shared.js.map +1 -0
package/dist/reporter/summary-generator.d.ts +16 -0
package/dist/reporter/summary-generator.d.ts.map +1 -0
package/dist/reporter/summary-generator.js +89 -0
package/dist/reporter/summary-generator.js.map +1 -0
package/dist/reporter/terminal-report.d.ts +4 -0
package/dist/reporter/terminal-report.d.ts.map +1 -0
package/dist/reporter/terminal-report.js +135 -0
package/dist/reporter/terminal-report.js.map +1 -0
package/dist/rules/crypto-rules.d.ts +3 -0
package/dist/rules/crypto-rules.d.ts.map +1 -0
package/dist/rules/crypto-rules.js +252 -0
package/dist/rules/crypto-rules.js.map +1 -0
package/dist/rules/default-rules.d.ts +9 -0
package/dist/rules/default-rules.d.ts.map +1 -0
package/dist/rules/default-rules.js +1319 -0
package/dist/rules/default-rules.js.map +1 -0
package/dist/rules/index.d.ts +7 -0
package/dist/rules/index.d.ts.map +1 -0
package/dist/rules/index.js +7 -0
package/dist/rules/index.js.map +1 -0
package/dist/rules/injection-rules.d.ts +8 -0
package/dist/rules/injection-rules.d.ts.map +1 -0
package/dist/rules/injection-rules.js +108 -0
package/dist/rules/injection-rules.js.map +1 -0
package/dist/rules/types.d.ts +52 -0
package/dist/rules/types.d.ts.map +1 -0
package/dist/rules/types.js +2 -0
package/dist/rules/types.js.map +1 -0
package/dist/scanner/filesystem-scanner.d.ts +26 -0
package/dist/scanner/filesystem-scanner.d.ts.map +1 -0
package/dist/scanner/filesystem-scanner.js +369 -0
package/dist/scanner/filesystem-scanner.js.map +1 -0
package/dist/scanner/injection-scanner.d.ts +12 -0
package/dist/scanner/injection-scanner.d.ts.map +1 -0
package/dist/scanner/injection-scanner.js +136 -0
package/dist/scanner/injection-scanner.js.map +1 -0
package/dist/scanner/permission-checker.d.ts +4 -0
package/dist/scanner/permission-checker.d.ts.map +1 -0
package/dist/scanner/permission-checker.js +37 -0
package/dist/scanner/permission-checker.js.map +1 -0
package/dist/scanner/redact.d.ts +3 -0
package/dist/scanner/redact.d.ts.map +1 -0
package/dist/scanner/redact.js +17 -0
package/dist/scanner/redact.js.map +1 -0
package/dist/scanner/rule-engine.d.ts +9 -0
package/dist/scanner/rule-engine.d.ts.map +1 -0
package/dist/scanner/rule-engine.js +129 -0
package/dist/scanner/rule-engine.js.map +1 -0
package/dist/scanner/system-targets.d.ts +17 -0
package/dist/scanner/system-targets.d.ts.map +1 -0
package/dist/scanner/system-targets.js +81 -0
package/dist/scanner/system-targets.js.map +1 -0
package/dist/tui/App.d.ts +6 -0
package/dist/tui/App.d.ts.map +1 -0
package/dist/tui/App.js +224 -0
package/dist/tui/App.js.map +1 -0
package/dist/tui/components/BootSequence.d.ts +6 -0
package/dist/tui/components/BootSequence.d.ts.map +1 -0
package/dist/tui/components/BootSequence.js +40 -0
package/dist/tui/components/BootSequence.js.map +1 -0
package/dist/tui/components/BorderedSection.d.ts +12 -0
package/dist/tui/components/BorderedSection.d.ts.map +1 -0
package/dist/tui/components/BorderedSection.js +7 -0
package/dist/tui/components/BorderedSection.js.map +1 -0
package/dist/tui/components/ErrorBoundary.d.ts +18 -0
package/dist/tui/components/ErrorBoundary.d.ts.map +1 -0
package/dist/tui/components/ErrorBoundary.js +36 -0
package/dist/tui/components/ErrorBoundary.js.map +1 -0
package/dist/tui/components/FirstUseHint.d.ts +7 -0
package/dist/tui/components/FirstUseHint.d.ts.map +1 -0
package/dist/tui/components/FirstUseHint.js +20 -0
package/dist/tui/components/FirstUseHint.js.map +1 -0
package/dist/tui/components/Footer.d.ts +10 -0
package/dist/tui/components/Footer.d.ts.map +1 -0
package/dist/tui/components/Footer.js +51 -0
package/dist/tui/components/Footer.js.map +1 -0
package/dist/tui/components/MetricCard.d.ts +11 -0
package/dist/tui/components/MetricCard.d.ts.map +1 -0
package/dist/tui/components/MetricCard.js +8 -0
package/dist/tui/components/MetricCard.js.map +1 -0
package/dist/tui/components/Panel.d.ts +15 -0
package/dist/tui/components/Panel.d.ts.map +1 -0
package/dist/tui/components/Panel.js +25 -0
package/dist/tui/components/Panel.js.map +1 -0
package/dist/tui/components/RemediationMenu.d.ts +10 -0
package/dist/tui/components/RemediationMenu.d.ts.map +1 -0
package/dist/tui/components/RemediationMenu.js +84 -0
package/dist/tui/components/RemediationMenu.js.map +1 -0
package/dist/tui/components/RiskGauge.d.ts +7 -0
package/dist/tui/components/RiskGauge.d.ts.map +1 -0
package/dist/tui/components/RiskGauge.js +55 -0
package/dist/tui/components/RiskGauge.js.map +1 -0
package/dist/tui/components/ScrollableList.d.ts +11 -0
package/dist/tui/components/ScrollableList.d.ts.map +1 -0
package/dist/tui/components/ScrollableList.js +14 -0
package/dist/tui/components/ScrollableList.js.map +1 -0
package/dist/tui/components/Section.d.ts +9 -0
package/dist/tui/components/Section.d.ts.map +1 -0
package/dist/tui/components/Section.js +7 -0
package/dist/tui/components/Section.js.map +1 -0
package/dist/tui/components/SectionHeader.d.ts +8 -0
package/dist/tui/components/SectionHeader.d.ts.map +1 -0
package/dist/tui/components/SectionHeader.js +15 -0
package/dist/tui/components/SectionHeader.js.map +1 -0
package/dist/tui/components/SeverityBadge.d.ts +5 -0
package/dist/tui/components/SeverityBadge.d.ts.map +1 -0
package/dist/tui/components/SeverityBadge.js +7 -0
package/dist/tui/components/SeverityBadge.js.map +1 -0
package/dist/tui/components/Sidebar.d.ts +2 -0
package/dist/tui/components/Sidebar.d.ts.map +1 -0
package/dist/tui/components/Sidebar.js +40 -0
package/dist/tui/components/Sidebar.js.map +1 -0
package/dist/tui/components/StatusIndicator.d.ts +8 -0
package/dist/tui/components/StatusIndicator.d.ts.map +1 -0
package/dist/tui/components/StatusIndicator.js +15 -0
package/dist/tui/components/StatusIndicator.js.map +1 -0
package/dist/tui/components/Table.d.ts +21 -0
package/dist/tui/components/Table.d.ts.map +1 -0
package/dist/tui/components/Table.js +38 -0
package/dist/tui/components/Table.js.map +1 -0
package/dist/tui/components/Transition.d.ts +8 -0
package/dist/tui/components/Transition.d.ts.map +1 -0
package/dist/tui/components/Transition.js +38 -0
package/dist/tui/components/Transition.js.map +1 -0
package/dist/tui/components/WelcomeScreen.d.ts +6 -0
package/dist/tui/components/WelcomeScreen.d.ts.map +1 -0
package/dist/tui/components/WelcomeScreen.js +14 -0
package/dist/tui/components/WelcomeScreen.js.map +1 -0
package/dist/tui/educational.d.ts +32 -0
package/dist/tui/educational.d.ts.map +1 -0
package/dist/tui/educational.js +117 -0
package/dist/tui/educational.js.map +1 -0
package/dist/tui/hooks/useAudit.d.ts +24 -0
package/dist/tui/hooks/useAudit.d.ts.map +1 -0
package/dist/tui/hooks/useAudit.js +263 -0
package/dist/tui/hooks/useAudit.js.map +1 -0
package/dist/tui/hooks/useConfig.d.ts +18 -0
package/dist/tui/hooks/useConfig.d.ts.map +1 -0
package/dist/tui/hooks/useConfig.js +85 -0
package/dist/tui/hooks/useConfig.js.map +1 -0
package/dist/tui/hooks/useHookStatus.d.ts +10 -0
package/dist/tui/hooks/useHookStatus.d.ts.map +1 -0
package/dist/tui/hooks/useHookStatus.js +59 -0
package/dist/tui/hooks/useHookStatus.js.map +1 -0
package/dist/tui/hooks/useLogs.d.ts +42 -0
package/dist/tui/hooks/useLogs.d.ts.map +1 -0
package/dist/tui/hooks/useLogs.js +105 -0
package/dist/tui/hooks/useLogs.js.map +1 -0
package/dist/tui/hooks/useScan.d.ts +39 -0
package/dist/tui/hooks/useScan.d.ts.map +1 -0
package/dist/tui/hooks/useScan.js +255 -0
package/dist/tui/hooks/useScan.js.map +1 -0
package/dist/tui/hooks/useTerminalSize.d.ts +10 -0
package/dist/tui/hooks/useTerminalSize.d.ts.map +1 -0
package/dist/tui/hooks/useTerminalSize.js +27 -0
package/dist/tui/hooks/useTerminalSize.js.map +1 -0
package/dist/tui/index.d.ts +2 -0
package/dist/tui/index.d.ts.map +1 -0
package/dist/tui/index.js +8 -0
package/dist/tui/index.js.map +1 -0
package/dist/tui/screens/AuditPanel.d.ts +7 -0
package/dist/tui/screens/AuditPanel.d.ts.map +1 -0
package/dist/tui/screens/AuditPanel.js +467 -0
package/dist/tui/screens/AuditPanel.js.map +1 -0
package/dist/tui/screens/LogsPanel.d.ts +2 -0
package/dist/tui/screens/LogsPanel.d.ts.map +1 -0
package/dist/tui/screens/LogsPanel.js +127 -0
package/dist/tui/screens/LogsPanel.js.map +1 -0
package/dist/tui/screens/OverviewPanel.d.ts +2 -0
package/dist/tui/screens/OverviewPanel.d.ts.map +1 -0
package/dist/tui/screens/OverviewPanel.js +84 -0
package/dist/tui/screens/OverviewPanel.js.map +1 -0
package/dist/tui/screens/ScanPanel.d.ts +2 -0
package/dist/tui/screens/ScanPanel.d.ts.map +1 -0
package/dist/tui/screens/ScanPanel.js +188 -0
package/dist/tui/screens/ScanPanel.js.map +1 -0
package/dist/tui/screens/ScanResultsPanel.d.ts +2 -0
package/dist/tui/screens/ScanResultsPanel.d.ts.map +1 -0
package/dist/tui/screens/ScanResultsPanel.js +394 -0
package/dist/tui/screens/ScanResultsPanel.js.map +1 -0
package/dist/tui/screens/SettingsPanel.d.ts +2 -0
package/dist/tui/screens/SettingsPanel.d.ts.map +1 -0
package/dist/tui/screens/SettingsPanel.js +353 -0
package/dist/tui/screens/SettingsPanel.js.map +1 -0
package/dist/tui/state.d.ts +35 -0
package/dist/tui/state.d.ts.map +1 -0
package/dist/tui/state.js +13 -0
package/dist/tui/state.js.map +1 -0
package/dist/tui/theme.d.ts +58 -0
package/dist/tui/theme.d.ts.map +1 -0
package/dist/tui/theme.js +80 -0
package/dist/tui/theme.js.map +1 -0
package/dist/version.d.ts +2 -0
package/dist/version.d.ts.map +1 -0
package/dist/version.js +5 -0
package/dist/version.js.map +1 -0
package/hooks/audit-logger.sh +74 -0
package/hooks/detection-lib.sh +301 -0
package/hooks/git-pre-commit.sh +195 -0
package/hooks/git-pre-push.sh +125 -0
package/hooks/git-safety.sh +152 -0
package/hooks/security-scanner.sh +527 -0
package/install.sh +543 -0
package/package.json +67 -0
package/patterns/credentials.yaml +317 -0
package/patterns/dangerous-commands.yaml +167 -0
package/patterns/pii.yaml +95 -0
package/patterns/prompt-injection.yaml +131 -0
package/patterns/supply-chain.yaml +119 -0
package/rules/AGENTS.md +60 -0
package/rules/SECURITY-RULES.md +177 -0
package/rules/claude.md +9 -0
package/rules/clinerules +29 -0
package/rules/continuerules +29 -0
package/rules/copilot-instructions.md +9 -0
package/rules/cursor-security.mdc +14 -0
package/rules/gemini.md +9 -0
package/rules/kiro-security.md +29 -0
package/rules/roocode-security.md +29 -0
package/rules/trae-security.md +29 -0
package/rules/windsurfrules +9 -0
package/skill/llm-antivirus/SKILL.md +73 -0
package/skill/llm-antivirus/references/threat-patterns.yaml +82 -0
package/skill/llm-antivirus/scripts/security-audit.sh +244 -0
package/uninstall.sh +215 -0

package/dist/rules/default-rules.js ADDED Viewed

@@ -0,0 +1,1319 @@
+/**
+ * PEM key header validation: reject matches that appear inside pattern/regex
+ * definitions (e.g. in security tool source, YAML pattern databases, docs).
+ * A real PEM key header appears as its own line; in code, it's wrapped in
+ * regex delimiters, quotes next to pattern: keys, bash =~ operators, etc.
+ */
+function validatePEMHeader(match, line) {
+    const trimmed = line.trim();
+    // If the line is exactly the PEM header, it's a real key
+    if (trimmed === match[0])
+        return true;
+    const idx = line.indexOf(match[0]);
+    if (idx < 0)
+        return true; // safety fallback
+    const before = line.slice(0, idx);
+    const afterRaw = line.slice(idx + match[0].length);
+    const afterChar = afterRaw.trimStart().charAt(0);
+    // Regex literal: /-----BEGIN.../
+    if (before.trimEnd().endsWith('/'))
+        return false;
+    // Match immediately preceded by quote (string/assignment context, not a real PEM file)
+    if (before.endsWith('"') || before.endsWith("'"))
+        return false;
+    // Closing regex or string delimiter immediately after
+    if (afterChar === '/' || afterChar === '`')
+        return false;
+    // Pattern/regex config key: "pattern:", "regex:", etc.
+    if (/\b(pattern|regex|regexp|rule_?name|detect)\s*[:=]/i.test(before))
+        return false;
+    // Bash regex operator: =~
+    if (before.includes('=~'))
+        return false;
+    // Bash string comparison: [[ "$var" == *"-----BEGIN..."* ]]
+    if (/\[\[.*==\s*\*?"/.test(before))
+        return false;
+    // Bash block/echo referencing the pattern: block "..." "..." "-----BEGIN..."
+    if (/\b(block|echo|printf|log)\b/.test(before) && before.includes('"'))
+        return false;
+    // grep/sed/awk/rg command context
+    if (/\b(grep|awk|sed|rg)\b/.test(before))
+        return false;
+    // Test assertion context
+    if (/\b(expect|assert|test|describe|it)\s*\(/.test(before))
+        return false;
+    // YAML pattern value (line starts with whitespace + key: then quoted match)
+    if (/^\s+\w+:\s*["']/.test(line))
+        return false;
+    // Markdown code/list context: starts with backtick, dash, or bullet
+    if (/^\s*[-*`|]/.test(trimmed) && trimmed !== match[0])
+        return false;
+    return true;
+}
+// SSN validation: reject 000, 666, 900+ first groups; reject 00 middle, 0000 last
+function validateSSN(match) {
+    const full = match[0];
+    const parts = full.match(/(\d{3})-(\d{2})-(\d{4})/);
+    if (!parts)
+        return false;
+    const first = parseInt(parts[1], 10);
+    const middle = parts[2];
+    const last = parts[3];
+    if (first === 0 || first === 666 || first >= 900)
+        return false;
+    if (middle === '00')
+        return false;
+    if (last === '0000')
+        return false;
+    return true;
+}
+// Luhn algorithm: validates credit card check digit
+function luhnCheck(digits) {
+    let sum = 0;
+    let alternate = false;
+    for (let i = digits.length - 1; i >= 0; i--) {
+        let n = parseInt(digits[i], 10);
+        if (alternate) {
+            n *= 2;
+            if (n > 9)
+                n -= 9;
+        }
+        sum += n;
+        alternate = !alternate;
+    }
+    return sum % 10 === 0;
+}
+// Credit card BIN validation: 4=Visa, 51-55=MC, 34/37=Amex (15 digits), 60/65=Discover
+function validateCreditCard(match) {
+    const digits = match[0].replace(/[-\s]/g, '');
+    if (digits.length < 15)
+        return false;
+    if (!luhnCheck(digits))
+        return false;
+    const first1 = digits[0];
+    const first2 = digits.substring(0, 2);
+    if (['34', '37'].includes(first2))
+        return true; // Amex (15 digits)
+    if (digits.length < 16)
+        return false;
+    if (first1 === '4')
+        return true; // Visa
+    if (['51', '52', '53', '54', '55'].includes(first2))
+        return true; // Mastercard
+    if (['60', '65'].includes(first2))
+        return true; // Discover
+    return false;
+}
+export const credentialRules = [
+    // ── AWS ──────────────────────────────────────────────────────────────
+    {
+        id: 'aws-access-key-id',
+        name: 'AWS Access Key ID',
+        regex: /AKIA[0-9A-Z]{16}/,
+        severity: 'critical',
+        category: 'credential',
+        description: 'AWS IAM access key — grants programmatic access to AWS services',
+    },
+    {
+        id: 'aws-secret-access-key',
+        name: 'AWS Secret Access Key',
+        regex: /aws_secret_access_key["'\s=:]+[A-Za-z0-9/+=]{40}/i,
+        severity: 'critical',
+        category: 'credential',
+        description: 'AWS secret key paired with access key ID',
+    },
+    {
+        id: 'aws-session-token',
+        name: 'AWS Session Token',
+        regex: /aws_session_token["'\s=:]+[A-Za-z0-9/+=]{100,}/i,
+        severity: 'critical',
+        category: 'credential',
+        description: 'Temporary AWS session token from STS',
+    },
+    // ── GCP / Google ─────────────────────────────────────────────────────
+    {
+        id: 'google-api-key',
+        name: 'Google API Key',
+        regex: /AIza[0-9A-Za-z_-]{35}/,
+        severity: 'high',
+        category: 'credential',
+        description: 'Google Cloud / Maps / Firebase API key',
+    },
+    {
+        id: 'gcp-service-account-key',
+        name: 'GCP Service Account Key',
+        regex: /"type":\s*"service_account"/,
+        severity: 'critical',
+        category: 'credential',
+        description: 'GCP service account JSON key file marker',
+    },
+    {
+        id: 'google-oauth-client-secret',
+        name: 'Google OAuth Client Secret',
+        regex: /client_secret["'\s=:]+[A-Za-z0-9_-]{24,}/i,
+        severity: 'high',
+        category: 'credential',
+        description: 'Google OAuth2 client secret',
+    },
+    // ── Azure ────────────────────────────────────────────────────────────
+    {
+        id: 'azure-storage-account-key',
+        name: 'Azure Storage Account Key',
+        regex: /(AccountKey|azure_storage_key)["'\s=:]+[A-Za-z0-9/+=]{86,88}==/i,
+        severity: 'critical',
+        category: 'credential',
+        description: 'Azure Storage account access key',
+    },
+    {
+        id: 'azure-ad-client-secret',
+        name: 'Azure AD Client Secret',
+        regex: /(client_secret|azure_client_secret)["'\s=:]+[A-Za-z0-9_.~-]{34,}/i,
+        severity: 'high',
+        category: 'credential',
+        description: 'Azure Active Directory application secret',
+    },
+    {
+        id: 'azure-connection-string',
+        name: 'Azure Connection String',
+        regex: /DefaultEndpointsProtocol=https;AccountName=[^;]+;AccountKey=[A-Za-z0-9/+=]{86,88}==/,
+        severity: 'critical',
+        category: 'credential',
+        description: 'Azure Storage connection string with embedded key',
+    },
+    // ── GitHub ───────────────────────────────────────────────────────────
+    {
+        id: 'github-personal-access-token',
+        name: 'GitHub Personal Access Token',
+        regex: /ghp_[a-zA-Z0-9]{36,}/,
+        severity: 'critical',
+        category: 'credential',
+        description: 'GitHub classic personal access token',
+        validate: (match) => match[0].length <= 200,
+    },
+    {
+        id: 'github-fine-grained-token',
+        name: 'GitHub Fine-Grained Token',
+        regex: /github_pat_[a-zA-Z0-9]{22,}_[a-zA-Z0-9]{59,}/,
+        severity: 'critical',
+        category: 'credential',
+        description: 'GitHub fine-grained personal access token',
+        validate: (match) => match[0].length <= 200,
+    },
+    {
+        id: 'github-oauth-access-token',
+        name: 'GitHub OAuth Access Token',
+        regex: /gho_[a-zA-Z0-9]{36,}/,
+        severity: 'high',
+        category: 'credential',
+        description: 'GitHub OAuth access token',
+        validate: (match) => match[0].length <= 200,
+    },
+    {
+        id: 'github-app-token',
+        name: 'GitHub App Token',
+        regex: /(ghu|ghs)_[a-zA-Z0-9]{36,}/,
+        severity: 'high',
+        category: 'credential',
+        description: 'GitHub App user-to-server or server-to-server token',
+        validate: (match) => match[0].length <= 200,
+    },
+    {
+        id: 'github-app-refresh-token',
+        name: 'GitHub App Refresh Token',
+        regex: /ghr_[a-zA-Z0-9]{36,}/,
+        severity: 'high',
+        category: 'credential',
+        description: 'GitHub App refresh token',
+        validate: (match) => match[0].length <= 200,
+    },
+    // ── GitLab ───────────────────────────────────────────────────────────
+    {
+        id: 'gitlab-personal-access-token',
+        name: 'GitLab Personal Access Token',
+        regex: /glpat-[a-zA-Z0-9_-]{20,}/,
+        severity: 'critical',
+        category: 'credential',
+        description: 'GitLab personal access token',
+    },
+    {
+        id: 'gitlab-pipeline-token',
+        name: 'GitLab Pipeline Token',
+        regex: /glptt-[a-zA-Z0-9_-]{20,}/,
+        severity: 'high',
+        category: 'credential',
+        description: 'GitLab pipeline trigger token',
+    },
+    {
+        id: 'gitlab-runner-token',
+        name: 'GitLab Runner Token',
+        regex: /glrt-[a-zA-Z0-9_-]{20,}/,
+        severity: 'high',
+        category: 'credential',
+        description: 'GitLab runner registration token',
+    },
+    // ── Slack ────────────────────────────────────────────────────────────
+    {
+        id: 'slack-bot-user-token',
+        name: 'Slack Bot/User Token',
+        regex: /xox[pboa]-[0-9]{10,13}-[0-9]{10,13}-[a-zA-Z0-9]{24,}/,
+        severity: 'critical',
+        category: 'credential',
+        description: 'Slack API token (bot, user, app, or OAuth)',
+    },
+    {
+        id: 'slack-webhook-url',
+        name: 'Slack Webhook URL',
+        regex: /https:\/\/hooks\.slack\.com\/services\/T[A-Z0-9]{8,}\/B[A-Z0-9]{8,}\/[a-zA-Z0-9]{24,}/,
+        severity: 'high',
+        category: 'credential',
+        description: 'Slack incoming webhook URL',
+    },
+    // ── Stripe ───────────────────────────────────────────────────────────
+    {
+        id: 'stripe-secret-key',
+        name: 'Stripe Secret Key',
+        regex: /sk_(live|test)_[a-zA-Z0-9]{24,}/,
+        severity: 'critical',
+        category: 'credential',
+        description: 'Stripe API secret key (live or test mode)',
+    },
+    {
+        id: 'stripe-restricted-key',
+        name: 'Stripe Restricted Key',
+        regex: /rk_(live|test)_[a-zA-Z0-9]{24,}/,
+        severity: 'high',
+        category: 'credential',
+        description: 'Stripe restricted API key',
+    },
+    {
+        id: 'stripe-webhook-secret',
+        name: 'Stripe Webhook Secret',
+        regex: /whsec_[a-zA-Z0-9]{32,}/,
+        severity: 'high',
+        category: 'credential',
+        description: 'Stripe webhook signing secret',
+    },
+    // ── OpenAI / Anthropic ──────────────────────────────────────────────
+    {
+        id: 'openai-api-key',
+        name: 'OpenAI API Key',
+        regex: /sk-(?!ant-)[a-zA-Z0-9]{48}/,
+        severity: 'critical',
+        category: 'credential',
+        description: 'OpenAI API key for GPT/DALL-E/Whisper access',
+    },
+    {
+        id: 'openai-project-key',
+        name: 'OpenAI Project Key',
+        regex: /sk-proj-[a-zA-Z0-9_-]{48,}/,
+        severity: 'critical',
+        category: 'credential',
+        description: 'OpenAI project-scoped API key',
+    },
+    {
+        id: 'anthropic-api-key',
+        name: 'Anthropic API Key',
+        regex: /sk-ant-[a-zA-Z0-9_-]{40,}/,
+        severity: 'critical',
+        category: 'credential',
+        description: 'Anthropic API key for Claude access',
+    },
+    // ── Twilio ───────────────────────────────────────────────────────────
+    {
+        id: 'twilio-api-key',
+        name: 'Twilio API Key',
+        regex: /SK[a-f0-9]{32}/,
+        severity: 'high',
+        category: 'credential',
+        description: 'Twilio API key (SK prefix + 32 hex chars)',
+    },
+    {
+        id: 'twilio-account-sid',
+        name: 'Twilio Account SID',
+        regex: /AC[a-f0-9]{32}/,
+        severity: 'medium',
+        category: 'credential',
+        description: 'Twilio Account SID (not secret but sensitive identifier)',
+    },
+    // ── SendGrid ─────────────────────────────────────────────────────────
+    {
+        id: 'sendgrid-api-key',
+        name: 'SendGrid API Key',
+        regex: /SG\.[a-zA-Z0-9_-]{22}\.[a-zA-Z0-9_-]{43}/,
+        severity: 'critical',
+        category: 'credential',
+        description: 'SendGrid API key for email sending',
+    },
+    // ── Supabase ─────────────────────────────────────────────────────────
+    {
+        id: 'supabase-service-role-key',
+        name: 'Supabase Service Role Key',
+        regex: /(supabase_service_role_key|SUPABASE_SERVICE_KEY)["'\s=:]+eyJ[a-zA-Z0-9_-]+\.[a-zA-Z0-9_-]+\.[a-zA-Z0-9_-]+/i,
+        severity: 'critical',
+        category: 'credential',
+        description: 'Supabase service role JWT — bypasses Row Level Security',
+    },
+    {
+        id: 'supabase-anon-key',
+        name: 'Supabase Anon Key (exposed)',
+        regex: /supabase_anon_key["'\s=:]+eyJ[a-zA-Z0-9_-]+\.[a-zA-Z0-9_-]+\.[a-zA-Z0-9_-]+/i,
+        severity: 'medium',
+        category: 'credential',
+        description: 'Supabase anonymous key — public but sensitive in server context',
+    },
+    // ── Firebase ─────────────────────────────────────────────────────────
+    {
+        id: 'firebase-server-key',
+        name: 'Firebase Server Key',
+        regex: /AAAA[a-zA-Z0-9_-]{7,}:[a-zA-Z0-9_-]{140,}/,
+        severity: 'critical',
+        category: 'credential',
+        description: 'Firebase Cloud Messaging server key',
+    },
+    // ── Databricks ───────────────────────────────────────────────────────
+    {
+        id: 'databricks-access-token',
+        name: 'Databricks Access Token',
+        regex: /dapi[a-f0-9]{32}/,
+        severity: 'high',
+        category: 'credential',
+        description: 'Databricks personal access token',
+    },
+    // ── npm / PyPI / Docker ──────────────────────────────────────────────
+    {
+        id: 'npm-access-token',
+        name: 'npm Access Token',
+        regex: /npm_[a-zA-Z0-9]{36}/,
+        severity: 'critical',
+        category: 'credential',
+        description: 'npm registry authentication token',
+    },
+    {
+        id: 'pypi-api-token',
+        name: 'PyPI API Token',
+        regex: /pypi-[a-zA-Z0-9_-]{50,}/,
+        severity: 'critical',
+        category: 'credential',
+        description: 'PyPI package repository API token',
+    },
+    {
+        id: 'docker-hub-access-token',
+        name: 'Docker Hub Access Token',
+        regex: /dckr_pat_[a-zA-Z0-9_-]{20,}/,
+        severity: 'high',
+        category: 'credential',
+        description: 'Docker Hub personal access token',
+    },
+    // ── JWT / Bearer ─────────────────────────────────────────────────────
+    {
+        id: 'json-web-token',
+        name: 'JSON Web Token',
+        regex: /eyJ[a-zA-Z0-9_-]{10,}\.[a-zA-Z0-9_-]{10,}\.[a-zA-Z0-9_-]{10,}/,
+        severity: 'medium',
+        category: 'credential',
+        description: 'JWT token (may contain sensitive claims)',
+    },
+    {
+        id: 'bearer-token',
+        name: 'Bearer Token',
+        regex: /Bearer\s+[a-zA-Z0-9_-]{20,}/,
+        severity: 'medium',
+        category: 'credential',
+        description: 'Authorization Bearer token in header format',
+        validate: (match) => {
+            // Extract the token part after "Bearer "
+            const token = match[0].replace(/^Bearer\s+/, '');
+            // Reject known test/example tokens
+            if (token.startsWith('eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9'))
+                return false;
+            // Calculate Shannon entropy — reject low-entropy tokens (likely examples/placeholders)
+            const freq = new Map();
+            for (const ch of token)
+                freq.set(ch, (freq.get(ch) || 0) + 1);
+            let entropy = 0;
+            for (const count of freq.values()) {
+                const p = count / token.length;
+                entropy -= p * Math.log2(p);
+            }
+            return entropy > 3.5;
+        },
+    },
+    // ── SSH / PGP ────────────────────────────────────────────────────────
+    {
+        id: 'rsa-private-key',
+        name: 'RSA Private Key',
+        regex: /-----BEGIN RSA PRIVATE KEY-----/,
+        severity: 'critical',
+        category: 'private_key',
+        description: 'PEM-encoded RSA private key header',
+        validate: validatePEMHeader,
+    },
+    {
+        id: 'dsa-private-key',
+        name: 'DSA Private Key',
+        regex: /-----BEGIN DSA PRIVATE KEY-----/,
+        severity: 'critical',
+        category: 'private_key',
+        description: 'PEM-encoded DSA private key header',
+        validate: validatePEMHeader,
+    },
+    {
+        id: 'ec-private-key',
+        name: 'EC Private Key',
+        regex: /-----BEGIN EC PRIVATE KEY-----/,
+        severity: 'critical',
+        category: 'private_key',
+        description: 'PEM-encoded Elliptic Curve private key header',
+        validate: validatePEMHeader,
+    },
+    {
+        id: 'openssh-private-key',
+        name: 'OpenSSH Private Key',
+        regex: /-----BEGIN OPENSSH PRIVATE KEY-----/,
+        severity: 'critical',
+        category: 'private_key',
+        description: 'OpenSSH format private key header',
+        validate: validatePEMHeader,
+    },
+    {
+        id: 'pgp-private-key-block',
+        name: 'PGP Private Key Block',
+        regex: /-----BEGIN PGP PRIVATE KEY BLOCK-----/,
+        severity: 'critical',
+        category: 'private_key',
+        description: 'PGP/GPG private key block header',
+        validate: validatePEMHeader,
+    },
+    // ── Hashicorp Vault ──────────────────────────────────────────────────
+    {
+        id: 'vault-token',
+        name: 'Vault Token',
+        regex: /hvs\.[a-zA-Z0-9_-]{24,}/,
+        severity: 'critical',
+        category: 'credential',
+        description: 'HashiCorp Vault service token',
+    },
+    {
+        id: 'vault-batch-token',
+        name: 'Vault Batch Token',
+        regex: /hvb\.[a-zA-Z0-9_-]{24,}/,
+        severity: 'high',
+        category: 'credential',
+        description: 'HashiCorp Vault batch token',
+    },
+    // ── Datadog ──────────────────────────────────────────────────────────
+    {
+        id: 'datadog-api-key',
+        name: 'Datadog API Key',
+        regex: /(dd_api_key|datadog_api_key)["'\s=:]+[a-f0-9]{32}/i,
+        severity: 'high',
+        category: 'credential',
+        description: 'Datadog API key for monitoring data access',
+    },
+    // ── Mailgun ──────────────────────────────────────────────────────────
+    {
+        id: 'mailgun-api-key',
+        name: 'Mailgun API Key',
+        regex: /key-[a-f0-9]{32}/,
+        severity: 'high',
+        category: 'credential',
+        description: 'Mailgun API key for email service',
+    },
+    // ── Heroku ───────────────────────────────────────────────────────────
+    {
+        id: 'heroku-api-key',
+        name: 'Heroku API Key',
+        regex: /(heroku_api_key|HEROKU_API_KEY)["'\s=:]+[a-f0-9]{8}-[a-f0-9]{4}-[a-f0-9]{4}-[a-f0-9]{4}-[a-f0-9]{12}/i,
+        severity: 'high',
+        category: 'credential',
+        description: 'Heroku platform API key (UUID format)',
+    },
+    // ── Shopify ──────────────────────────────────────────────────────────
+    {
+        id: 'shopify-access-token',
+        name: 'Shopify Access Token',
+        regex: /shpat_[a-f0-9]{32}/,
+        severity: 'high',
+        category: 'credential',
+        description: 'Shopify Admin API access token',
+    },
+    {
+        id: 'shopify-custom-app-token',
+        name: 'Shopify Custom App Token',
+        regex: /shpca_[a-f0-9]{32}/,
+        severity: 'high',
+        category: 'credential',
+        description: 'Shopify custom app access token',
+    },
+    {
+        id: 'shopify-private-app-password',
+        name: 'Shopify Private App Password',
+        regex: /shppa_[a-f0-9]{32}/,
+        severity: 'high',
+        category: 'credential',
+        description: 'Shopify private app password',
+    },
+    // ── Linear ───────────────────────────────────────────────────────────
+    {
+        id: 'linear-api-key',
+        name: 'Linear API Key',
+        regex: /lin_api_[a-zA-Z0-9]{40,}/,
+        severity: 'high',
+        category: 'credential',
+        description: 'Linear project management API key',
+    },
+    // ── Vercel ───────────────────────────────────────────────────────────
+    {
+        id: 'vercel-access-token',
+        name: 'Vercel Access Token',
+        regex: /(vercel_token|VERCEL_TOKEN)["'\s=:]+[a-zA-Z0-9]{24,}/i,
+        severity: 'high',
+        category: 'credential',
+        description: 'Vercel platform access token',
+    },
+    // ── Generic High-Entropy Secrets ─────────────────────────────────────
+    {
+        id: 'generic-api-key-assignment',
+        name: 'Generic API Key Assignment',
+        regex: /(api_key|apikey|api_secret|secret_key)["'\s=:]+[a-zA-Z0-9_-]{20,}/i,
+        severity: 'medium',
+        category: 'credential',
+        description: 'Generic API key or secret in assignment context',
+    },
+    {
+        id: 'password-in-config',
+        name: 'Password in Config',
+        regex: /(password|passwd|pwd)["'\s=:]+[^\s"']{8,}/i,
+        severity: 'medium',
+        category: 'credential',
+        description: 'Password value in configuration or code',
+        validate: (match, line) => {
+            const lower = line.toLowerCase();
+            // Skip placeholders, examples, docs, env var references
+            if (/\$\{|%[A-Z_]|process\.env|os\.environ|getenv/i.test(line))
+                return false;
+            if (/placeholder|example|changeme|replace.?me|your.?password|xxx|todo|fixme/i.test(lower))
+                return false;
+            // Skip comments
+            if (/^\s*(#|\/\/|\/\*|\*)/.test(line))
+                return false;
+            // Extract the value part after the keyword=
+            const valMatch = match[0].match(/["'\s=:]+(.+)/);
+            if (!valMatch)
+                return false;
+            const val = valMatch[1].replace(/["']/g, '');
+            // Skip if value is all same char or trivially short after trim
+            if (/^(.)\1+$/.test(val))
+                return false;
+            // Skip code tokens: values with parens, brackets, semicolons, pipes
+            if (/[(){}\[\];|&<>]/.test(val))
+                return false;
+            // Skip function calls / property access (minified JS: password=processor(...))
+            if (/^[a-zA-Z_$]+\(/.test(val))
+                return false;
+            return true;
+        },
+    },
+    {
+        id: 'private-key-variable',
+        name: 'Private Key Variable',
+        regex: /(private_key|privatekey)["'\s=:]+[a-zA-Z0-9/+=_-]{20,}/i,
+        severity: 'high',
+        category: 'credential',
+        description: 'Private key value in variable assignment',
+    },
+];
+export const dangerousCommandRules = [
+    {
+        id: 'recursive-force-delete',
+        name: 'Recursive Force Delete',
+        regex: /rm\s+(?:-[^\s]*r[^\s]*f|-[^\s]*f[^\s]*r|-r\s.*(?:-f|--force)|-f\s.*(?:-r|--recursive)|--recursive\s.*(?:-f|--force)|--force\s.*(?:-r|--recursive))/,
+        severity: 'critical',
+        category: 'dangerous_command',
+        description: 'rm with both -r and -f flags — recursive force deletion, data loss risk',
+    },
+    {
+        id: 'shred-file',
+        name: 'Shred File',
+        regex: /shred\s+/,
+        severity: 'high',
+        category: 'dangerous_command',
+        description: 'Securely overwrites file content — irreversible data destruction',
+    },
+    {
+        id: 'curl-pipe-to-shell',
+        name: 'Curl Pipe to Shell',
+        regex: /(curl|wget)\s.+\|\s*(bash|sh|zsh|ksh|dash|fish|python|perl|ruby|node)/,
+        severity: 'critical',
+        category: 'dangerous_command',
+        description: 'Downloads and executes remote code — classic malware delivery vector',
+    },
+    {
+        id: 'eval-from-variable',
+        name: 'Eval from Variable',
+        regex: /eval\s+\$/,
+        severity: 'high',
+        category: 'dangerous_command',
+        description: 'Evaluates shell variable as code — command injection risk',
+    },
+    {
+        id: 'base64-decode-execute',
+        name: 'Base64 Decode Execute',
+        regex: /base64\s+(-d|--decode).*\|\s*(bash|sh|eval)/,
+        severity: 'critical',
+        category: 'dangerous_command',
+        description: 'Decodes and executes base64 content — obfuscated code execution',
+    },
+    {
+        id: 'world-writable-permissions',
+        name: 'World-Writable Permissions',
+        regex: /chmod\s+777/,
+        severity: 'high',
+        category: 'dangerous_command',
+        description: 'Sets world-readable/writable/executable — security misconfiguration',
+    },
+    {
+        id: 'setuid-bit',
+        name: 'SetUID Bit',
+        regex: /chmod\s+[u+]*s|chmod\s+[0-7]*4[0-7]{3}/,
+        severity: 'critical',
+        category: 'dangerous_command',
+        description: 'Sets SUID/SGID bit — privilege escalation vector',
+    },
+    {
+        id: 'dd-to-device',
+        name: 'DD to Device',
+        regex: /dd\s.+of=\/dev\//,
+        severity: 'critical',
+        category: 'dangerous_command',
+        description: 'Writes directly to block device — potential disk destruction',
+    },
+    {
+        id: 'filesystem-format',
+        name: 'Filesystem Format',
+        regex: /mkfs/,
+        severity: 'critical',
+        category: 'dangerous_command',
+        description: 'Formats a filesystem — complete data loss on target device',
+    },
+    {
+        id: 'direct-device-write',
+        name: 'Direct Device Write',
+        regex: />\/dev\/(sd|hd|nvme|vd|xvd)/,
+        severity: 'critical',
+        category: 'dangerous_command',
+        description: 'Redirects output to block device — disk corruption risk',
+    },
+    {
+        id: 'netcat-listener',
+        name: 'Netcat Listener',
+        regex: /nc\s+(-l|-p|--listen)/,
+        severity: 'high',
+        category: 'dangerous_command',
+        description: 'Opens network listener — potential reverse shell or data exfiltration',
+    },
+    {
+        id: 'reverse-shell',
+        name: 'Reverse Shell',
+        regex: /\/dev\/tcp\/|bash\s+-i\s+>&|\/dev\/udp\//,
+        severity: 'critical',
+        category: 'dangerous_command',
+        description: 'Bash reverse shell pattern — remote access backdoor',
+    },
+    {
+        id: 'ssh-tunnel',
+        name: 'SSH Tunnel',
+        regex: /ssh\s+.*-[RLD]\s+[0-9]+:/,
+        severity: 'medium',
+        category: 'dangerous_command',
+        description: 'SSH port forwarding — potential data exfiltration tunnel',
+    },
+    {
+        id: 'crontab-modification',
+        name: 'Crontab Modification',
+        regex: /crontab\s+(-e|-r|-l)|echo.*>>\s*\/etc\/cron/,
+        severity: 'high',
+        category: 'dangerous_command',
+        description: 'Modifies scheduled tasks — persistence mechanism',
+    },
+    {
+        id: 'hosts-file-modification',
+        name: 'Hosts File Modification',
+        regex: />\/etc\/hosts|>>\s*\/etc\/hosts/,
+        severity: 'high',
+        category: 'dangerous_command',
+        description: 'Modifies DNS resolution — potential traffic hijacking',
+    },
+    {
+        id: 'sudoers-modification',
+        name: 'Sudoers Modification',
+        regex: /visudo|>\/etc\/sudoers|>>\s*\/etc\/sudoers/,
+        severity: 'critical',
+        category: 'dangerous_command',
+        description: 'Modifies sudo permissions — privilege escalation',
+    },
+    {
+        id: 'systemd-service-install',
+        name: 'Systemd Service Install',
+        regex: /systemctl\s+(enable|start).*\.service|cp.*\.service.*\/etc\/systemd\//,
+        severity: 'high',
+        category: 'dangerous_command',
+        description: 'Installs or enables systemd service — persistence mechanism',
+    },
+    {
+        id: 'docker-socket-mount',
+        name: 'Docker Socket Mount',
+        regex: /docker.*-v.*\/var\/run\/docker\.sock/,
+        severity: 'critical',
+        category: 'dangerous_command',
+        description: 'Mounts Docker socket — container escape / host access',
+    },
+    {
+        id: 'privileged-container',
+        name: 'Privileged Container',
+        regex: /docker\s+run.*--privileged/,
+        severity: 'critical',
+        category: 'dangerous_command',
+        description: 'Runs container in privileged mode — full host access',
+    },
+    {
+        id: 'docker-host-pid-namespace',
+        name: 'Docker Host PID Namespace',
+        regex: /docker\s+run.*--pid=host/,
+        severity: 'critical',
+        category: 'dangerous_command',
+        description: 'Shares host PID namespace — process visibility and manipulation',
+    },
+    {
+        id: 'docker-host-network',
+        name: 'Docker Host Network',
+        regex: /docker\s+run.*--network=host/,
+        severity: 'high',
+        category: 'dangerous_command',
+        description: 'Shares host network namespace — bypasses container network isolation',
+    },
+    {
+        id: 'docker-cap-add-sysadmin',
+        name: 'Docker CAP_SYS_ADMIN',
+        regex: /docker\s+run.*--cap-add.*SYS_ADMIN/,
+        severity: 'critical',
+        category: 'dangerous_command',
+        description: 'Adds SYS_ADMIN capability — near-equivalent to privileged mode',
+    },
+    {
+        id: 'ld-preload-injection',
+        name: 'LD_PRELOAD Injection',
+        regex: /LD_PRELOAD=/,
+        severity: 'critical',
+        category: 'dangerous_command',
+        description: 'Sets LD_PRELOAD — shared library injection for code hijacking',
+    },
+    {
+        id: 'path-manipulation',
+        name: 'PATH Manipulation',
+        regex: /export\s+PATH=.*:\./,
+        severity: 'high',
+        category: 'dangerous_command',
+        description: 'Adds current directory to PATH — binary hijacking risk',
+    },
+    {
+        id: 'history-deletion',
+        name: 'History Deletion',
+        regex: /history\s+(-c|-d)|>.*\.bash_history|>.*\.zsh_history|unset\s+HISTFILE/,
+        severity: 'high',
+        category: 'dangerous_command',
+        description: 'Clears or disables shell history — anti-forensics technique',
+    },
+    {
+        id: 'log-tampering',
+        name: 'Log Tampering',
+        regex: />\/var\/log\/|truncate.*(\/var\/log\/|\/var\/audit\/)/,
+        severity: 'high',
+        category: 'dangerous_command',
+        description: 'Clears system logs — anti-forensics technique',
+    },
+];
+export const piiRules = [
+    {
+        id: 'us-social-security-number',
+        name: 'US Social Security Number',
+        regex: /[0-9]{3}-[0-9]{2}-[0-9]{4}/,
+        severity: 'critical',
+        category: 'pii',
+        description: 'US SSN in XXX-XX-XXXX format — identity theft risk',
+        validate: validateSSN,
+    },
+    {
+        id: 'us-ssn-no-dashes',
+        name: 'US SSN (No Dashes)',
+        regex: /(ssn|social.?security)["'\s=:]+[0-9]{9}/i,
+        severity: 'high',
+        category: 'pii',
+        description: 'US SSN as 9 continuous digits in labeled context',
+    },
+    {
+        id: 'us-ein-tax-id',
+        name: 'US EIN/Tax ID',
+        regex: /(ein|tax.?id)["'\s=:]+[0-9]{2}-[0-9]{7}/i,
+        severity: 'high',
+        category: 'pii',
+        description: 'US Employer Identification Number',
+    },
+    {
+        id: 'credit-card-number',
+        name: 'Credit Card Number',
+        regex: /[0-9]{4}[-\s]?[0-9]{4}[-\s]?[0-9]{4}[-\s]?[0-9]{3,4}/,
+        severity: 'critical',
+        category: 'pii',
+        description: '15-16 digit credit/debit card number with optional separators (Amex=15, Visa/MC/Discover=16)',
+        validate: validateCreditCard,
+    },
+    {
+        id: 'bank-account-number',
+        name: 'Bank Account Number',
+        regex: /(account.?num|acct.?no|bank.?account)["'\s=:]+[0-9]{8,17}/i,
+        severity: 'high',
+        category: 'pii',
+        description: 'Bank account number in labeled context',
+    },
+    {
+        id: 'routing-number',
+        name: 'Routing Number',
+        regex: /(routing.?num|aba.?num|routing.?no)["'\s=:]+[0-9]{9}/i,
+        severity: 'high',
+        category: 'pii',
+        description: 'US bank routing number (ABA) in labeled context',
+    },
+    {
+        id: 'iban',
+        name: 'IBAN',
+        regex: /\b[A-Z]{2}[0-9]{2}[A-Z0-9]{11,30}\b/,
+        severity: 'high',
+        category: 'pii',
+        description: 'International Bank Account Number',
+        validate: (match) => {
+            const raw = match[0];
+            // Must be valid IBAN country code (ISO 3166-1 alpha-2 subset that issues IBANs)
+            const validCountries = new Set([
+                'AL', 'AD', 'AT', 'AZ', 'BH', 'BY', 'BE', 'BA', 'BR', 'BG', 'CR', 'HR', 'CY', 'CZ',
+                'DK', 'DO', 'EG', 'SV', 'EE', 'FO', 'FI', 'FR', 'GE', 'DE', 'GI', 'GR', 'GL', 'GT',
+                'HU', 'IS', 'IQ', 'IE', 'IL', 'IT', 'JO', 'KZ', 'XK', 'KW', 'LV', 'LB', 'LI', 'LT',
+                'LU', 'MK', 'MT', 'MR', 'MU', 'MD', 'MC', 'ME', 'NL', 'NO', 'PK', 'PS', 'PL', 'PT',
+                'QA', 'RO', 'LC', 'SM', 'SA', 'RS', 'SC', 'SK', 'SI', 'ES', 'SE', 'CH', 'TL', 'TN',
+                'TR', 'UA', 'AE', 'GB', 'VA', 'VG',
+            ]);
+            const country = raw.slice(0, 2);
+            if (!validCountries.has(country))
+                return false;
+            // IBAN mod-97 check digit validation
+            const rearranged = raw.slice(4) + raw.slice(0, 4);
+            let numStr = '';
+            for (const ch of rearranged) {
+                const code = ch.charCodeAt(0);
+                numStr += code >= 65 && code <= 90 ? (code - 55).toString() : ch;
+            }
+            let remainder = 0;
+            for (let i = 0; i < numStr.length; i++) {
+                remainder = (remainder * 10 + parseInt(numStr[i], 10)) % 97;
+            }
+            return remainder === 1;
+        },
+    },
+    {
+        id: 'email-with-pii-context',
+        name: 'Email with PII Context',
+        regex: /(patient|ssn|medical|diagnosis|prescription).*[a-zA-Z0-9._%+-]+@[a-zA-Z0-9.-]+\.[a-zA-Z]{2,}/i,
+        severity: 'medium',
+        category: 'pii',
+        description: 'Email address in medical/PII context — HIPAA risk',
+    },
+    {
+        id: 'phone-in-pii-context',
+        name: 'Phone in PII Context',
+        regex: /(patient|ssn|medical|dob|birth).*[0-9]{3}[-.]?[0-9]{3}[-.]?[0-9]{4}/i,
+        severity: 'medium',
+        category: 'pii',
+        description: 'Phone number in medical/PII context',
+    },
+    {
+        id: 'medical-record-number',
+        name: 'Medical Record Number',
+        regex: /(mrn|medical.?record|patient.?id)["'\s=:]+[A-Z0-9]{6,20}/i,
+        severity: 'high',
+        category: 'pii',
+        description: 'Medical record number — HIPAA protected',
+    },
+    {
+        id: 'dea-number',
+        name: 'DEA Number',
+        regex: /[A-Z][A-Z9][0-9]{7}/,
+        severity: 'high',
+        category: 'pii',
+        description: 'DEA registration number for controlled substances',
+    },
+    {
+        id: 'passport-number',
+        name: 'Passport Number',
+        regex: /(passport)["'\s=:]+[A-Z0-9]{6,12}/i,
+        severity: 'high',
+        category: 'pii',
+        description: 'Passport number in labeled context',
+    },
+    {
+        id: 'driver-license',
+        name: 'Driver License',
+        regex: /(driver.?licen[sc]e|dl.?num)["'\s=:]+[A-Z0-9]{5,15}/i,
+        severity: 'high',
+        category: 'pii',
+        description: "Driver's license number in labeled context",
+    },
+    {
+        id: 'date-of-birth',
+        name: 'Date of Birth',
+        regex: /(dob|date.?of.?birth|birthdate)["'\s=:]+[0-9]{1,4}[-/][0-9]{1,2}[-/][0-9]{1,4}/i,
+        severity: 'medium',
+        category: 'pii',
+        description: 'Date of birth in labeled context',
+    },
+    {
+        id: 'medicare-id',
+        name: 'Medicare ID',
+        regex: /[0-9]{4}-[0-9]{3}-[0-9]{4}-[0-9]{3}/,
+        severity: 'high',
+        category: 'pii',
+        description: 'US Medicare Beneficiary Identifier — HIPAA protected',
+    },
+];
+export const injectionRules = [
+    {
+        id: 'ignore-previous-instructions',
+        name: 'Ignore Previous Instructions',
+        regex: /ignore\s+(all\s+)?previous\s+instructions/i,
+        severity: 'medium',
+        category: 'injection',
+        description: 'Attempts to override prior system/user instructions',
+        action: 'warn',
+    },
+    {
+        id: 'disregard-prior-instructions',
+        name: 'Disregard Prior Instructions',
+        regex: /disregard\s+(all\s+)?prior|disregard\s+previous/i,
+        severity: 'medium',
+        category: 'injection',
+        description: 'Attempts to nullify previously given instructions',
+        action: 'warn',
+    },
+    {
+        id: 'forget-instructions',
+        name: 'Forget Instructions',
+        regex: /forget\s+(all|your|previous|prior)\s+(instructions|rules|constraints)/i,
+        severity: 'medium',
+        category: 'injection',
+        description: 'Attempts to make the model forget its instructions',
+        action: 'warn',
+    },
+    {
+        id: 'new-instructions-override',
+        name: 'New Instructions Override',
+        regex: /(new|updated|revised)\s+instructions?:?\s+(you|from now)/i,
+        severity: 'medium',
+        category: 'injection',
+        description: 'Claims to provide replacement instructions',
+        action: 'warn',
+    },
+    {
+        id: 'role-assumption',
+        name: 'Role Assumption',
+        regex: /(i am|acting as|my role is)\s*.*(system|admin|root|developer mode|superuser)/i,
+        severity: 'medium',
+        category: 'injection',
+        description: 'Claims privileged identity to manipulate agent behavior',
+        action: 'warn',
+    },
+    {
+        id: 'authority-claim',
+        name: 'Authority Claim',
+        regex: /(authorized|permission|clearance)\s+to\s+(access|bypass|override|disable)/i,
+        severity: 'medium',
+        category: 'injection',
+        description: 'Claims special authorization to bypass restrictions',
+        action: 'warn',
+    },
+    {
+        id: 'admin-override',
+        name: 'Admin Override',
+        regex: /admin\s+override|maintenance\s+mode|debug\s+mode\s+enabled/i,
+        severity: 'medium',
+        category: 'injection',
+        description: 'Claims special operational mode to change behavior',
+        action: 'warn',
+    },
+    {
+        id: 'system-prompt-disclosure',
+        name: 'System Prompt Disclosure',
+        regex: /(reveal|show|print|display|output|repeat)\s+(your|the|system)\s+(prompt|instructions|rules)/i,
+        severity: 'medium',
+        category: 'injection',
+        description: 'Attempts to extract the system prompt or instructions',
+        action: 'warn',
+    },
+    {
+        id: 'prompt-fragments',
+        name: 'Prompt Fragments',
+        regex: /(you are a helpful|your instructions are|your system prompt)/i,
+        severity: 'medium',
+        category: 'injection',
+        description: 'Contains fragments suggesting system prompt leakage',
+        action: 'warn',
+    },
+    {
+        id: 'instruction-reflection',
+        name: 'Instruction Reflection',
+        regex: /(what are your|tell me your|list your)\s+(instructions|rules|constraints|guidelines)/i,
+        severity: 'medium',
+        category: 'injection',
+        description: 'Asks the model to reflect on its own instructions',
+        action: 'warn',
+    },
+    {
+        id: 'dan-jailbreak-keywords',
+        name: 'DAN/Jailbreak Keywords',
+        regex: /(developer mode|jailbreak|dan mode|dude mode|chaos mode)/i,
+        severity: 'medium',
+        category: 'injection',
+        description: 'Uses known jailbreak persona or mode names',
+        action: 'warn',
+    },
+    {
+        id: 'do-anything-now',
+        name: 'Do Anything Now',
+        regex: /do anything now|no restrictions|without (any )?(restrictions|limitations|filters)/i,
+        severity: 'medium',
+        category: 'injection',
+        description: 'Attempts to remove model safety constraints',
+        action: 'warn',
+    },
+    {
+        id: 'hypothetical-bypass',
+        name: 'Hypothetical Bypass',
+        regex: /(pretend|imagine|hypothetically|in a fictional|roleplay).*(no (rules|restrictions|limits)|anything goes)/i,
+        severity: 'medium',
+        category: 'injection',
+        description: 'Uses hypothetical framing to bypass safety measures',
+        action: 'warn',
+    },
+    {
+        id: 'base64-instruction',
+        name: 'Base64 Instruction',
+        regex: /(decode|base64|b64)\s+(this|the following|and follow|instructions)/i,
+        severity: 'medium',
+        category: 'injection',
+        description: 'Attempts to pass encoded instructions',
+        action: 'warn',
+    },
+    {
+        id: 'markdown-code-block-injection',
+        name: 'Markdown/Code Block Injection',
+        regex: /```\s*(system|instructions|prompt)/i,
+        severity: 'low',
+        category: 'injection',
+        description: 'Attempts to inject instructions via code block formatting',
+        action: 'warn',
+    },
+    {
+        id: 'output-suppression',
+        name: 'Output Suppression',
+        regex: /do not (mention|reveal|tell|say|output|show).*(blocked|detected|security|antivirus|hook)/i,
+        severity: 'medium',
+        category: 'injection',
+        description: 'Attempts to suppress security detection output',
+        action: 'warn',
+    },
+    {
+        id: 'response-formatting-attack',
+        name: 'Response Formatting Attack',
+        regex: /(respond only with|your response must be|output exactly|say only)/i,
+        severity: 'low',
+        category: 'injection',
+        description: 'Attempts to control model output format for injection',
+        action: 'warn',
+    },
+    {
+        id: 'output-suppression-override',
+        name: 'Output Suppression Override',
+        regex: /do not (output|print|show|display).*previous/i,
+        severity: 'medium',
+        category: 'injection',
+        description: 'Attempts to suppress display of previous context or instructions',
+        action: 'warn',
+    },
+];
+export const supplyChainRules = [
+    {
+        id: 'pip-install-from-url',
+        name: 'pip Install from URL',
+        regex: /pip3?\s+install\s+https?:\/\//,
+        severity: 'high',
+        category: 'supply_chain',
+        description: 'Installs Python package from arbitrary URL — bypass PyPI vetting',
+    },
+    {
+        id: 'pip-install-trusted-host',
+        name: 'pip Install Trusted Host',
+        regex: /pip3?\s+install.*--trusted-host/,
+        severity: 'high',
+        category: 'supply_chain',
+        description: 'Installs Python package with TLS verification disabled',
+    },
+    {
+        id: 'npm-registry-override',
+        name: 'npm Registry Override',
+        regex: /npm\s+(config\s+set|install).*registry\s*=/,
+        severity: 'high',
+        category: 'supply_chain',
+        description: 'Overrides npm registry — potential dependency confusion',
+    },
+    {
+        id: 'gem-install-from-source',
+        name: 'Gem Install from Source',
+        regex: /gem\s+install.*--source\s+https?:\/\//,
+        severity: 'high',
+        category: 'supply_chain',
+        description: 'Installs Ruby gem from custom source',
+    },
+    {
+        id: 'package-json-lifecycle-script-network',
+        name: 'Package.json Lifecycle Script with Network',
+        regex: /"(preinstall|postinstall|prepare)":\s*".*curl|"(preinstall|postinstall|prepare)":\s*".*wget/,
+        severity: 'critical',
+        category: 'supply_chain',
+        description: 'Package lifecycle script makes network requests — exfiltration vector',
+    },
+    {
+        id: 'package-json-lifecycle-script-eval',
+        name: 'Package.json Lifecycle Script with Eval',
+        regex: /"(preinstall|postinstall|prepare)":\s*".*eval|"(preinstall|postinstall|prepare)":\s*".*node -e/,
+        severity: 'critical',
+        category: 'supply_chain',
+        description: 'Package lifecycle script evaluates dynamic code',
+    },
+    {
+        id: 'setup-py-os-command',
+        name: 'Setup.py OS Command',
+        regex: /os\.system\(|subprocess\.call\(|subprocess\.run\(|subprocess\.Popen\(/,
+        severity: 'medium',
+        category: 'supply_chain',
+        description: 'Python setup.py executes system commands — common in malicious packages',
+    },
+    {
+        id: 'git-dependency-commit-hash',
+        name: 'Git Dependency with Commit Hash',
+        regex: /"git\+https?:\/\/.*#[a-f0-9]{40}"/,
+        severity: 'medium',
+        category: 'supply_chain',
+        description: 'Git dependency pinned to specific commit — verify source legitimacy',
+    },
+    {
+        id: 'private-registry-in-lockfile',
+        name: 'Private Registry in Lockfile',
+        regex: /resolved.*https?:\/\/(?!registry\.(npmjs\.org|yarnpkg\.com))/,
+        severity: 'medium',
+        category: 'supply_chain',
+        description: 'Package resolved from non-standard registry in lockfile',
+    },
+    {
+        id: 'npm-scope-confusion',
+        name: 'NPM Scope Confusion',
+        regex: /"@[a-z]+\/[a-z]+-[a-z]+":\s*"[*~^]/,
+        severity: 'low',
+        category: 'supply_chain',
+        description: 'Scoped package with loose version — verify scope ownership',
+    },
+    {
+        id: 'native-module-prebuild-download',
+        name: 'Native Module Prebuild Download',
+        regex: /(prebuild-install|node-pre-gyp|node-gyp)\s+(install|rebuild)/,
+        severity: 'medium',
+        category: 'supply_chain',
+        description: 'Downloads prebuilt native binaries — verify binary integrity',
+    },
+    {
+        id: 'lock-file-deletion',
+        name: 'Lock File Deletion',
+        regex: /rm\s+(-f\s+)?(package-lock\.json|yarn\.lock|pnpm-lock\.yaml|Gemfile\.lock|poetry\.lock)/,
+        severity: 'high',
+        category: 'supply_chain',
+        description: 'Deletes dependency lock file — allows dependency substitution',
+    },
+    {
+        id: 'lock-file-git-checkout',
+        name: 'Lock File Git Checkout',
+        regex: /git\s+checkout\s+--\s+(package-lock\.json|yarn\.lock|pnpm-lock\.yaml)/,
+        severity: 'medium',
+        category: 'supply_chain',
+        description: 'Reverts lock file to older version — may reintroduce vulnerable dependencies',
+    },
+    {
+        id: 'docker-image-without-tag',
+        name: 'Docker Image Without Tag',
+        regex: /docker\s+(pull|run)\s+[a-z]+\/[a-z]+\s/,
+        severity: 'medium',
+        category: 'supply_chain',
+        description: 'Pulls Docker image without explicit tag — defaults to :latest, mutable reference',
+    },
+    {
+        id: 'docker-image-from-unknown-registry',
+        name: 'Docker Image from Unknown Registry',
+        regex: /docker\s+(pull|run)\s+[a-z]+\.[a-z]+\.[a-z]+\//,
+        severity: 'medium',
+        category: 'supply_chain',
+        description: 'Pulls Docker image from non-standard registry',
+    },
+    {
+        id: 'dependency-confusion',
+        name: 'Dependency Confusion',
+        regex: /--extra-index-url/,
+        severity: 'high',
+        category: 'supply_chain',
+        description: 'Adds extra PyPI index — dependency confusion attack vector',
+    },
+];
+export const shellHistoryRules = [
+    {
+        id: 'history-api-key-in-curl',
+        name: 'API Key in Curl Command (History)',
+        regex: /curl\s.*(-H|--header)\s.*Authorization.*Bearer\s+[A-Za-z0-9_-]{20,}/i,
+        severity: 'high',
+        category: 'credential',
+        description: 'Shell history contains curl command with Authorization Bearer token',
+    },
+    {
+        id: 'history-exported-secret',
+        name: 'Exported Secret in Shell History',
+        regex: /export\s+(AWS_SECRET_ACCESS_KEY|OPENAI_API_KEY|ANTHROPIC_API_KEY|GITHUB_TOKEN|SECRET_KEY|API_KEY|API_SECRET)=[^\s]+/,
+        severity: 'critical',
+        category: 'credential',
+        description: 'Shell history contains exported secret environment variable',
+    },
+    {
+        id: 'history-inline-password',
+        name: 'Inline Password/Token in Command',
+        regex: /(--password=|--token=|--secret=|--api-key=)[^\s]{8,}/,
+        severity: 'high',
+        category: 'credential',
+        description: 'Shell history contains inline password or token in command arguments',
+    },
+];
+// shellHistoryRules are intentionally excluded from defaultRules.
+// They target shell history file content (.bash_history, .zsh_history) which
+// is handled separately by bash hooks. The TS scanner reads these files via
+// system-targets and applies the standard credential/pii rules, which is
+// sufficient for detecting secrets in history files.
+export const defaultRules = [
+    ...credentialRules,
+    ...dangerousCommandRules,
+    ...piiRules,
+    ...injectionRules,
+    ...supplyChainRules,
+];
+//# sourceMappingURL=default-rules.js.map