circle-ir-ai 2.7.1 → 2.7.2

package/dist/cli/commands/swarm.js

@@ -1,175 +0,0 @@
-/**
- * Swarm Command - Parallel multi-file analysis using Mastra
- */
-import * as fs from 'fs';
-import * as path from 'path';
-import { analyzeFilesSwarm } from '../../agents/mastra/swarm.js';
-import { discoverFiles } from '../discovery.js';
-import { FileCache } from '../../cache/file-cache.js';
-import { logger } from '../../utils/logger.js';
-import { colors } from '../colors.js';
-const { cyan, green, yellow, red, dim, bold } = colors;
-export async function runSwarmAnalysis(options) {
-    const startTime = Date.now();
-    // Discover files
-    if (!options.quiet) {
-        console.error(cyan(`Discovering files in ${options.directory}...`));
-    }
-    const discoveryOpts = {
-        include: options.include.length > 0 ? options.include : [
-            '**/*.java',
-            '**/*.js', '**/*.ts', '**/*.jsx', '**/*.tsx',
-            '**/*.py',
-            '**/*.rs',
-            '**/*.c', '**/*.cpp', '**/*.h', '**/*.hpp',
-        ],
-        exclude: options.exclude.length > 0 ? options.exclude : [
-            '**/test/**', '**/tests/**', '**/*Test.java', '**/*_test.rs',
-            '**/node_modules/**', '**/target/**', '**/build/**',
-        ],
-    };
-    const discoveredFiles = discoverFiles(options.directory, discoveryOpts);
-    if (discoveredFiles.length === 0) {
-        console.error(yellow('No files found to analyze.'));
-        return {
-            results: [],
-            summary: {
-                totalFiles: 0,
-                totalVulnerabilities: 0,
-                totalSources: 0,
-                totalSinks: 0,
-                filesWithVulnerabilities: 0,
-                totalTimeMs: 0,
-                avgTimePerFile: 0,
-            },
-        };
-    }
-    // Initialize cache if enabled
-    const cacheEnabled = options.cacheEnabled !== false;
-    let cache;
-    if (cacheEnabled) {
-        cache = new FileCache({
-            cacheDir: options.cacheDir || path.join(path.resolve(options.directory), '.circle-ir-cache'),
-            enabled: true,
-        });
-        // Clear cache if requested
-        if (options.clearCache) {
-            cache.clear();
-            if (!options.quiet) {
-                console.error(cyan('Cache cleared'));
-            }
-        }
-        if (!options.quiet) {
-            console.error(cyan('Cache enabled'));
-        }
-    }
-    if (!options.quiet) {
-        console.error(cyan(`Found ${discoveredFiles.length} files to analyze`));
-        console.error(cyan(`Using ${options.maxConcurrency} parallel workers`));
-        console.error('');
-    }
-    // Use lazy file loading to reduce peak memory usage
-    // Content is loaded on-demand as files enter the worker queue
-    const files = discoveredFiles.map(file => ({
-        path: file.path,
-        getContent: () => fs.readFileSync(file.path, 'utf-8'),
-    }));
-    // Progress tracking
-    let completed = 0;
-    const progressInterval = options.quiet ? null : setInterval(() => {
-        const percent = Math.round((completed / files.length) * 100);
-        process.stderr.write(`\r${cyan(`Progress: ${completed}/${files.length} (${percent}%)`)}`);
-    }, 500);
-    try {
-        // Run swarm analysis (language auto-detected per file from extension)
-        const result = await analyzeFilesSwarm(files, {
-            enableEnrichment: options.enableEnrichment,
-            enableVerification: options.enableVerification,
-            maxConcurrency: options.maxConcurrency,
-            cache,
-            cacheEnabled,
-            streamToFile: options.streamOutput,
-            memoryEfficient: options.memoryEfficient,
-            disabledPasses: options.disabledPasses,
-            onFileComplete: (file, index, total) => {
-                completed = index + 1;
-                logger.debug(`Completed ${file}`, { index, total });
-            },
-            onResultWritten: options.streamOutput && !options.quiet
-                ? (file, index) => logger.debug(`Streamed result for ${file}`)
-                : undefined,
-        });
-        if (progressInterval) {
-            clearInterval(progressInterval);
-            process.stderr.write('\r' + ' '.repeat(60) + '\r');
-        }
-        // Print summary
-        if (!options.quiet) {
-            printSummary(result, Date.now() - startTime, cache);
-        }
-        return result;
-    }
-    finally {
-        if (progressInterval) {
-            clearInterval(progressInterval);
-        }
-    }
-}
-function printSummary(result, totalTimeMs, cache) {
-    console.error('');
-    console.error(bold('═══════════════════════════════════════════════════════════════'));
-    console.error(bold('                     SWARM ANALYSIS COMPLETE                    '));
-    console.error(bold('═══════════════════════════════════════════════════════════════'));
-    console.error('');
-    const { summary } = result;
-    console.error(`  ${cyan('Files Analyzed:')}       ${summary.totalFiles}`);
-    console.error(`  ${cyan('Total Time:')}           ${(totalTimeMs / 1000).toFixed(2)}s`);
-    console.error(`  ${cyan('Avg Time per File:')}    ${(summary.avgTimePerFile / 1000).toFixed(2)}s`);
-    if (result.streamFile) {
-        console.error(`  ${cyan('Stream Output:')}        ${result.streamFile}`);
-    }
-    console.error('');
-    // Show cache stats if available
-    if (summary.cacheHits !== undefined && summary.cacheMisses !== undefined) {
-        const total = summary.cacheHits + summary.cacheMisses;
-        const hitRate = total > 0 ? ((summary.cacheHits / total) * 100).toFixed(1) : '0.0';
-        console.error(`  ${cyan('Cache Hits:')}          ${summary.cacheHits}`);
-        console.error(`  ${cyan('Cache Misses:')}        ${summary.cacheMisses}`);
-        console.error(`  ${cyan('Cache Hit Rate:')}      ${hitRate}%`);
-        console.error('');
-    }
-    console.error(`  ${cyan('Sources Found:')}        ${summary.totalSources}`);
-    console.error(`  ${cyan('Sinks Found:')}          ${summary.totalSinks}`);
-    console.error('');
-    if (summary.totalVulnerabilities > 0) {
-        console.error(`  ${red('Vulnerabilities:')}      ${summary.totalVulnerabilities}`);
-        console.error(`  ${red('Files with Vulns:')}     ${summary.filesWithVulnerabilities}`);
-    }
-    else {
-        console.error(`  ${green('Vulnerabilities:')}      0`);
-    }
-    console.error('');
-    // List files with vulnerabilities
-    const filesWithVulns = result.results.filter(r => r.vulnerabilities.length > 0);
-    if (filesWithVulns.length > 0) {
-        console.error(bold('Files with vulnerabilities:'));
-        for (const file of filesWithVulns) {
-            console.error(`  ${red('•')} ${file.file} (${file.vulnerabilities.length} vulns)`);
-        }
-        console.error('');
-    }
-    // List errors
-    const filesWithErrors = result.results.filter(r => r.error);
-    if (filesWithErrors.length > 0) {
-        console.error(yellow(`Files with errors: ${filesWithErrors.length}`));
-        for (const file of filesWithErrors.slice(0, 5)) {
-            console.error(`  ${yellow('!')} ${file.file}: ${file.error}`);
-        }
-        if (filesWithErrors.length > 5) {
-            console.error(dim(`  ... and ${filesWithErrors.length - 5} more`));
-        }
-        console.error('');
-    }
-    console.error(bold('═══════════════════════════════════════════════════════════════'));
-}
-//# sourceMappingURL=swarm.js.map

package/dist/cli/commands/swarm.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"swarm.js","sourceRoot":"","sources":["../../../src/cli/commands/swarm.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,OAAO,KAAK,EAAE,MAAM,IAAI,CAAC;AACzB,OAAO,KAAK,IAAI,MAAM,MAAM,CAAC;AAC7B,OAAO,EAAE,iBAAiB,EAAqD,MAAM,8BAA8B,CAAC;AACpH,OAAO,EAAE,aAAa,EAAyB,MAAM,iBAAiB,CAAC;AACvE,OAAO,EAAE,SAAS,EAAE,MAAM,2BAA2B,CAAC;AACtD,OAAO,EAAE,MAAM,EAAE,MAAM,uBAAuB,CAAC;AAC/C,OAAO,EAAE,MAAM,EAAE,MAAM,cAAc,CAAC;AACtC,MAAM,EAAE,IAAI,EAAE,KAAK,EAAE,MAAM,EAAE,GAAG,EAAE,GAAG,EAAE,IAAI,EAAE,GAAG,MAAM,CAAC;AAqBvD,MAAM,CAAC,KAAK,UAAU,gBAAgB,CAAC,OAAqB;IAC1D,MAAM,SAAS,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;IAE7B,iBAAiB;IACjB,IAAI,CAAC,OAAO,CAAC,KAAK,EAAE,CAAC;QACnB,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,wBAAwB,OAAO,CAAC,SAAS,KAAK,CAAC,CAAC,CAAC;IACtE,CAAC;IAED,MAAM,aAAa,GAAqB;QACtC,OAAO,EAAE,OAAO,CAAC,OAAO,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC,CAAC;YACtD,WAAW;YACX,SAAS,EAAE,SAAS,EAAE,UAAU,EAAE,UAAU;YAC5C,SAAS;YACT,SAAS;YACT,QAAQ,EAAE,UAAU,EAAE,QAAQ,EAAE,UAAU;SAC3C;QACD,OAAO,EAAE,OAAO,CAAC,OAAO,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC,CAAC;YACtD,YAAY,EAAE,aAAa,EAAE,eAAe,EAAE,cAAc;YAC5D,oBAAoB,EAAE,cAAc,EAAE,aAAa;SACpD;KACF,CAAC;IAEF,MAAM,eAAe,GAAG,aAAa,CAAC,OAAO,CAAC,SAAS,EAAE,aAAa,CAAC,CAAC;IAExE,IAAI,eAAe,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QACjC,OAAO,CAAC,KAAK,CAAC,MAAM,CAAC,4BAA4B,CAAC,CAAC,CAAC;QACpD,OAAO;YACL,OAAO,EAAE,EAAE;YACX,OAAO,EAAE;gBACP,UAAU,EAAE,CAAC;gBACb,oBAAoB,EAAE,CAAC;gBACvB,YAAY,EAAE,CAAC;gBACf,UAAU,EAAE,CAAC;gBACb,wBAAwB,EAAE,CAAC;gBAC3B,WAAW,EAAE,CAAC;gBACd,cAAc,EAAE,CAAC;aAClB;SACF,CAAC;IACJ,CAAC;IAED,8BAA8B;IAC9B,MAAM,YAAY,GAAG,OAAO,CAAC,YAAY,KAAK,KAAK,CAAC;IACpD,IAAI,KAAwC,CAAC;IAE7C,IAAI,YAAY,EAAE,CAAC;QACjB,KAAK,GAAG,IAAI,SAAS,CAAa;YAChC,QAAQ,EAAE,OAAO,CAAC,QAAQ,IAAI,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,OAAO,CAAC,OAAO,CAAC,SAAS,CAAC,EAAE,kBAAkB,CAAC;YAC5F,OAAO,EAAE,IAAI;SACd,CAAC,CAAC;QAEH,2BAA2B;QAC3B,IAAI,OAAO,CAAC,UAAU,EAAE,CAAC;YACvB,KAAK,CAAC,KAAK,EAAE,CAAC;YACd,IAAI,CAAC,OAAO,CAAC,KAAK,EAAE,CAAC;gBACnB,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,eAAe,CAAC,CAAC,CAAC;YACvC,CAAC;QACH,CAAC;QAED,IAAI,CAAC,OAAO,CAAC,KAAK,EAAE,CAAC;YACnB,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,eAAe,CAAC,CAAC,CAAC;QACvC,CAAC;IACH,CAAC;IAED,IAAI,CAAC,OAAO,CAAC,KAAK,EAAE,CAAC;QACnB,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,SAAS,eAAe,CAAC,MAAM,mBAAmB,CAAC,CAAC,CAAC;QACxE,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,SAAS,OAAO,CAAC,cAAc,mBAAmB,CAAC,CAAC,CAAC;QACxE,OAAO,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC;IACpB,CAAC;IAED,oDAAoD;IACpD,8DAA8D;IAC9D,MAAM,KAAK,GAAgB,eAAe,CAAC,GAAG,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QACtD,IAAI,EAAE,IAAI,CAAC,IAAI;QACf,UAAU,EAAE,GAAG,EAAE,CAAC,EAAE,CAAC,YAAY,CAAC,IAAI,CAAC,IAAI,EAAE,OAAO,CAAC;KACtD,CAAC,CAAC,CAAC;IAEJ,oBAAoB;IACpB,IAAI,SAAS,GAAG,CAAC,CAAC;IAClB,MAAM,gBAAgB,GAAG,OAAO,CAAC,KAAK,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,WAAW,CAAC,GAAG,EAAE;QAC/D,MAAM,OAAO,GAAG,IAAI,CAAC,KAAK,CAAC,CAAC,SAAS,GAAG,KAAK,CAAC,MAAM,CAAC,GAAG,GAAG,CAAC,CAAC;QAC7D,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,KAAK,IAAI,CAAC,aAAa,SAAS,IAAI,KAAK,CAAC,MAAM,KAAK,OAAO,IAAI,CAAC,EAAE,CAAC,CAAC;IAC5F,CAAC,EAAE,GAAG,CAAC,CAAC;IAER,IAAI,CAAC;QACH,sEAAsE;QACtE,MAAM,MAAM,GAAG,MAAM,iBAAiB,CAAC,KAAK,EAAE;YAC5C,gBAAgB,EAAE,OAAO,CAAC,gBAAgB;YAC1C,kBAAkB,EAAE,OAAO,CAAC,kBAAkB;YAC9C,cAAc,EAAE,OAAO,CAAC,cAAc;YACtC,KAAK;YACL,YAAY;YACZ,YAAY,EAAE,OAAO,CAAC,YAAY;YAClC,eAAe,EAAE,OAAO,CAAC,eAAe;YACxC,cAAc,EAAE,OAAO,CAAC,cAAc;YACtC,cAAc,EAAE,CAAC,IAAI,EAAE,KAAK,EAAE,KAAK,EAAE,EAAE;gBACrC,SAAS,GAAG,KAAK,GAAG,CAAC,CAAC;gBACtB,MAAM,CAAC,KAAK,CAAC,aAAa,IAAI,EAAE,EAAE,EAAE,KAAK,EAAE,KAAK,EAAE,CAAC,CAAC;YACtD,CAAC;YACD,eAAe,EAAE,OAAO,CAAC,YAAY,IAAI,CAAC,OAAO,CAAC,KAAK;gBACrD,CAAC,CAAC,CAAC,IAAI,EAAE,KAAK,EAAE,EAAE,CAAC,MAAM,CAAC,KAAK,CAAC,uBAAuB,IAAI,EAAE,CAAC;gBAC9D,CAAC,CAAC,SAAS;SACd,CAAC,CAAC;QAEH,IAAI,gBAAgB,EAAE,CAAC;YACrB,aAAa,CAAC,gBAAgB,CAAC,CAAC;YAChC,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,IAAI,GAAG,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,GAAG,IAAI,CAAC,CAAC;QACrD,CAAC;QAED,gBAAgB;QAChB,IAAI,CAAC,OAAO,CAAC,KAAK,EAAE,CAAC;YACnB,YAAY,CAAC,MAAM,EAAE,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS,EAAE,KAAK,CAAC,CAAC;QACtD,CAAC;QAED,OAAO,MAAM,CAAC;IAChB,CAAC;YAAS,CAAC;QACT,IAAI,gBAAgB,EAAE,CAAC;YACrB,aAAa,CAAC,gBAAgB,CAAC,CAAC;QAClC,CAAC;IACH,CAAC;AACH,CAAC;AAED,SAAS,YAAY,CAAC,MAAmB,EAAE,WAAmB,EAAE,KAA6B;IAC3F,OAAO,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC;IAClB,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,iEAAiE,CAAC,CAAC,CAAC;IACvF,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,kEAAkE,CAAC,CAAC,CAAC;IACxF,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,iEAAiE,CAAC,CAAC,CAAC;IACvF,OAAO,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC;IAElB,MAAM,EAAE,OAAO,EAAE,GAAG,MAAM,CAAC;IAE3B,OAAO,CAAC,KAAK,CAAC,KAAK,IAAI,CAAC,iBAAiB,CAAC,UAAU,OAAO,CAAC,UAAU,EAAE,CAAC,CAAC;IAC1E,OAAO,CAAC,KAAK,CAAC,KAAK,IAAI,CAAC,aAAa,CAAC,cAAc,CAAC,WAAW,GAAG,IAAI,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC;IACxF,OAAO,CAAC,KAAK,CAAC,KAAK,IAAI,CAAC,oBAAoB,CAAC,OAAO,CAAC,OAAO,CAAC,cAAc,GAAG,IAAI,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC;IACnG,IAAK,MAAc,CAAC,UAAU,EAAE,CAAC;QAC/B,OAAO,CAAC,KAAK,CAAC,KAAK,IAAI,CAAC,gBAAgB,CAAC,WAAY,MAAc,CAAC,UAAU,EAAE,CAAC,CAAC;IACpF,CAAC;IACD,OAAO,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC;IAElB,gCAAgC;IAChC,IAAI,OAAO,CAAC,SAAS,KAAK,SAAS,IAAI,OAAO,CAAC,WAAW,KAAK,SAAS,EAAE,CAAC;QACzE,MAAM,KAAK,GAAG,OAAO,CAAC,SAAS,GAAG,OAAO,CAAC,WAAW,CAAC;QACtD,MAAM,OAAO,GAAG,KAAK,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,SAAS,GAAG,KAAK,CAAC,GAAG,GAAG,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC;QACnF,OAAO,CAAC,KAAK,CAAC,KAAK,IAAI,CAAC,aAAa,CAAC,aAAa,OAAO,CAAC,SAAS,EAAE,CAAC,CAAC;QACxE,OAAO,CAAC,KAAK,CAAC,KAAK,IAAI,CAAC,eAAe,CAAC,WAAW,OAAO,CAAC,WAAW,EAAE,CAAC,CAAC;QAC1E,OAAO,CAAC,KAAK,CAAC,KAAK,IAAI,CAAC,iBAAiB,CAAC,SAAS,OAAO,GAAG,CAAC,CAAC;QAC/D,OAAO,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC;IACpB,CAAC;IAED,OAAO,CAAC,KAAK,CAAC,KAAK,IAAI,CAAC,gBAAgB,CAAC,WAAW,OAAO,CAAC,YAAY,EAAE,CAAC,CAAC;IAC5E,OAAO,CAAC,KAAK,CAAC,KAAK,IAAI,CAAC,cAAc,CAAC,aAAa,OAAO,CAAC,UAAU,EAAE,CAAC,CAAC;IAC1E,OAAO,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC;IAElB,IAAI,OAAO,CAAC,oBAAoB,GAAG,CAAC,EAAE,CAAC;QACrC,OAAO,CAAC,KAAK,CAAC,KAAK,GAAG,CAAC,kBAAkB,CAAC,SAAS,OAAO,CAAC,oBAAoB,EAAE,CAAC,CAAC;QACnF,OAAO,CAAC,KAAK,CAAC,KAAK,GAAG,CAAC,mBAAmB,CAAC,QAAQ,OAAO,CAAC,wBAAwB,EAAE,CAAC,CAAC;IACzF,CAAC;SAAM,CAAC;QACN,OAAO,CAAC,KAAK,CAAC,KAAK,KAAK,CAAC,kBAAkB,CAAC,SAAS,CAAC,CAAC;IACzD,CAAC;IAED,OAAO,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC;IAElB,kCAAkC;IAClC,MAAM,cAAc,GAAG,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,eAAe,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC;IAChF,IAAI,cAAc,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QAC9B,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,6BAA6B,CAAC,CAAC,CAAC;QACnD,KAAK,MAAM,IAAI,IAAI,cAAc,EAAE,CAAC;YAClC,OAAO,CAAC,KAAK,CAAC,KAAK,GAAG,CAAC,GAAG,CAAC,IAAI,IAAI,CAAC,IAAI,KAAK,IAAI,CAAC,eAAe,CAAC,MAAM,SAAS,CAAC,CAAC;QACrF,CAAC;QACD,OAAO,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC;IACpB,CAAC;IAED,cAAc;IACd,MAAM,eAAe,GAAG,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC;IAC5D,IAAI,eAAe,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QAC/B,OAAO,CAAC,KAAK,CAAC,MAAM,CAAC,sBAAsB,eAAe,CAAC,MAAM,EAAE,CAAC,CAAC,CAAC;QACtE,KAAK,MAAM,IAAI,IAAI,eAAe,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,EAAE,CAAC;YAC/C,OAAO,CAAC,KAAK,CAAC,KAAK,MAAM,CAAC,GAAG,CAAC,IAAI,IAAI,CAAC,IAAI,KAAK,IAAI,CAAC,KAAK,EAAE,CAAC,CAAC;QAChE,CAAC;QACD,IAAI,eAAe,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YAC/B,OAAO,CAAC,KAAK,CAAC,GAAG,CAAC,aAAa,eAAe,CAAC,MAAM,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC;QACrE,CAAC;QACD,OAAO,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC;IACpB,CAAC;IAED,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,iEAAiE,CAAC,CAAC,CAAC;AACzF,CAAC"}

package/dist/cli/commands/trust.d.ts

@@ -1,23 +0,0 @@
-/**
- * Trust Score Command
- *
- * Runs all trust passes (Sprint 0-3) against a project and produces
- * a composite trust score, tier, findings, and optional badge/artifacts.
- *
- * Usage:
- *   cognium-ai trust <path>
- *   cognium-ai trust <path> --format json
- *   cognium-ai trust <path> --format markdown -o trust-badge.svg
- */
-import { type AnalyzerOptions } from 'circle-ir';
-import type { CliArgs } from '../args.js';
-import { type TrustPassResult } from '../../trust/types.js';
-import type { TrustScoreResult } from '../../trust/types.js';
-export interface TrustAnalysisResult {
-    passResults: TrustPassResult[];
-    trustResult: TrustScoreResult;
-    totalDuration: number;
-}
-export declare function runTrustAnalysis(targetPath: string, quiet: boolean, analyzerOptions?: AnalyzerOptions, trustDisabledPasses?: string[], include?: string[], exclude?: string[], maxFiles?: number): Promise<TrustAnalysisResult>;
-export declare function executeTrust(args: CliArgs): Promise<number>;
-//# sourceMappingURL=trust.d.ts.map

package/dist/cli/commands/trust.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"trust.d.ts","sourceRoot":"","sources":["../../../src/cli/commands/trust.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;GAUG;AAIH,OAAO,EAA0B,KAAK,eAAe,EAAE,MAAM,WAAW,CAAC;AAEzE,OAAO,KAAK,EAAE,OAAO,EAAE,MAAM,YAAY,CAAC;AAG1C,OAAO,EACL,KAAK,eAAe,EAErB,MAAM,sBAAsB,CAAC;AAgS9B,OAAO,KAAK,EAAE,gBAAgB,EAAE,MAAM,sBAAsB,CAAC;AAE7D,MAAM,WAAW,mBAAmB;IAClC,WAAW,EAAE,eAAe,EAAE,CAAC;IAC/B,WAAW,EAAE,gBAAgB,CAAC;IAC9B,aAAa,EAAE,MAAM,CAAC;CACvB;AAED,wBAAsB,gBAAgB,CACpC,UAAU,EAAE,MAAM,EAClB,KAAK,EAAE,OAAO,EACd,eAAe,CAAC,EAAE,eAAe,EACjC,mBAAmB,CAAC,EAAE,MAAM,EAAE,EAC9B,OAAO,GAAE,MAAM,EAAO,EACtB,OAAO,GAAE,MAAM,EAAO,EACtB,QAAQ,SAAO,GACd,OAAO,CAAC,mBAAmB,CAAC,CA2D9B;AAMD,wBAAsB,YAAY,CAAC,IAAI,EAAE,OAAO,GAAG,OAAO,CAAC,MAAM,CAAC,CAkHjE"}

package/dist/cli/commands/trust.js

@@ -1,397 +0,0 @@
-/**
- * Trust Score Command
- *
- * Runs all trust passes (Sprint 0-3) against a project and produces
- * a composite trust score, tier, findings, and optional badge/artifacts.
- *
- * Usage:
- *   cognium-ai trust <path>
- *   cognium-ai trust <path> --format json
- *   cognium-ai trust <path> --format markdown -o trust-badge.svg
- */
-import * as fs from 'fs';
-import * as path from 'path';
-import { analyze } from 'circle-ir';
-import { ensureAnalyzerInitialized } from '../../utils/analyzer-init.js';
-import { getEffectiveOptions } from '../effective-options.js';
-import { collectFiles } from '../file-collection.js';
-// Import all trust passes
-import { hardcodedSecretsPass } from '../../trust/passes/hardcoded-secrets.js';
-import { licenseCompliancePass } from '../../trust/passes/license-compliance.js';
-import { typosquatDetectionPass } from '../../trust/passes/typosquat-detection.js';
-import { promptInjectionPass } from '../../trust/passes/prompt-injection.js';
-import { maliciousInstallScriptPass } from '../../trust/passes/malicious-install-script.js';
-import { dependencyStalenessPass } from '../../trust/passes/dependency-staleness.js';
-import { excessivePermissionsPass } from '../../trust/passes/excessive-permissions.js';
-import { dataExfiltrationPass } from '../../trust/passes/data-exfiltration.js';
-import { agentInventoryPass } from '../../trust/passes/agent-inventory.js';
-import { sbomGenerationPass } from '../../trust/passes/sbom-generation.js';
-import { auditTrailPass } from '../../trust/passes/audit-trail.js';
-import { vexGenerationPass } from '../../trust/passes/vex-generation.js';
-import { dependencyAuditPass } from '../../trust/passes/dependency-audit.js';
-import { codeComplexityPass } from '../../trust/passes/code-complexity.js';
-import { inputValidationPass } from '../../trust/passes/input-validation.js';
-import { euAiActFlagsPass } from '../../trust/passes/eu-ai-act-flags.js';
-import { toolPoisoningPass } from '../../trust/passes/tool-poisoning.js';
-import { aiGeneratedFingerprintPass } from '../../trust/passes/ai-generated-fingerprint.js';
-import { cacheInvalidationPass } from '../../trust/passes/performance-passes.js';
-import { adaptCircleIRFindings } from '../../trust/passes/circlir-findings-adapter.js';
-import { missingGuardDomPass } from '../../trust/passes/missing-guard-dom.js';
-import { featureEnvyPass } from '../../trust/passes/feature-envy.js';
-import { specGapReportPass } from '../../trust/passes/spec-gap-report.js';
-import { deprecatedUsagePass } from '../../trust/passes/deprecated-usage.js';
-import { throwsMismatchPass } from '../../trust/passes/throws-mismatch.js';
-import { inconsistentNamingPass } from '../../trust/passes/inconsistent-naming.js';
-import { deprecationNoReplacementPass } from '../../trust/passes/deprecation-no-replacement.js';
-import { docCoveragePass } from '../../trust/passes/doc-coverage.js';
-import { inconsistentParamOrderPass } from '../../trust/passes/inconsistent-param-order.js';
-import { inconsistentErrorHandlingPass } from '../../trust/passes/inconsistent-error-handling.js';
-import { unnecessaryObjectHotspotPass } from '../../trust/passes/unnecessary-object-hotspot.js';
-import { crossSkillInteractionPass } from '../../trust/passes/cross-skill-interaction.js';
-import { generateBadgeFromScore } from '../../trust/badge.js';
-import { computeTrustScore } from '../../trust/scoring.js';
-const TRUST_PASSES = [
-    // Sprint 0
-    { name: 'hardcoded-secrets', sprint: 0, run: (p) => hardcodedSecretsPass(p) },
-    { name: 'license-compliance', sprint: 0, run: (p) => licenseCompliancePass(p) },
-    { name: 'typosquat-detection', sprint: 0, run: (p) => typosquatDetectionPass(p) },
-    // Sprint 1
-    { name: 'prompt-injection', sprint: 1, run: (p) => promptInjectionPass(p) },
-    { name: 'malicious-install', sprint: 1, run: (p) => maliciousInstallScriptPass(p) },
-    { name: 'dependency-staleness', sprint: 1, run: (p) => dependencyStalenessPass(p) },
-    // Sprint 2 — forward CircleIR to eligible passes
-    { name: 'excessive-permissions', sprint: 2, run: (p, ir) => excessivePermissionsPass(p, { circleIRResults: ir }) },
-    { name: 'data-exfiltration', sprint: 2, run: (p, ir) => dataExfiltrationPass(p, { circleIRResults: ir }) },
-    { name: 'agent-inventory', sprint: 2, run: (p) => agentInventoryPass(p) },
-    // Sprint 3 (artifact generators) — forward CircleIR
-    // eslint-disable-next-line @typescript-eslint/no-explicit-any -- CircleIR structurally compatible with pass-specific interfaces
-    { name: 'sbom-generation', sprint: 3, run: (p, ir) => sbomGenerationPass(p, { circleIRResults: ir }) },
-    { name: 'vex-generation', sprint: 3, run: (p, ir) => vexGenerationPass(p, { circleIRResults: ir }) },
-    // Sprint 4 — advanced passes
-    { name: 'dependency-audit', sprint: 4, run: (p) => dependencyAuditPass(p) },
-    { name: 'code-complexity', sprint: 4, run: (p, ir) => codeComplexityPass(p, { circleIRResults: ir }) },
-    { name: 'input-validation', sprint: 4, run: (p, ir) => inputValidationPass(p, { circleIRResults: ir }) },
-    // Sprint 5
-    { name: 'eu-ai-act-flags', sprint: 5, run: (p) => euAiActFlagsPass(p) },
-    // Sprint 6 (Phase 3)
-    { name: 'tool-poisoning', sprint: 6, run: (p, ir) => toolPoisoningPass(p, { circleIRResults: ir }) },
-    { name: 'ai-generated-fingerprint', sprint: 6, run: (p) => aiGeneratedFingerprintPass(p) },
-    // Sprint 7 — Performance (P30-P32 via circle-ir findings adapter, P33 standalone)
-    { name: 'blocking-main-thread', sprint: 7, run: (_p, ir) => Promise.resolve(adaptCircleIRFindings('blocking-main-thread', { circleIRResults: ir })) },
-    { name: 'excessive-allocation', sprint: 7, run: (_p, ir) => Promise.resolve(adaptCircleIRFindings('excessive-allocation', { circleIRResults: ir })) },
-    { name: 'missing-stream', sprint: 7, run: (_p, ir) => Promise.resolve(adaptCircleIRFindings('missing-stream', { circleIRResults: ir })) },
-    { name: 'cache-invalidation', sprint: 7, run: (p, ir) => cacheInvalidationPass(p, { circleIRResults: ir }) },
-    // Sprint 8 — LLM-enhanced replacements (circle-ir 3.14.0)
-    { name: 'missing-guard-dom', sprint: 8, run: (p, ir) => missingGuardDomPass(p, { circleIRResults: ir }) },
-    { name: 'feature-envy', sprint: 8, run: (p, ir) => featureEnvyPass(p, { circleIRResults: ir }) },
-    // Sprint 9 — Circle-IR architecture/maintainability passes
-    { name: 'god-class', sprint: 9, run: (_p, ir) => Promise.resolve(adaptCircleIRFindings('god-class', { circleIRResults: ir })) },
-    { name: 'naming-convention', sprint: 9, run: (_p, ir) => Promise.resolve(adaptCircleIRFindings('naming-convention', { circleIRResults: ir })) },
-    // Sprint 10 — Semantic Understanding
-    { name: 'spec-gap-report', sprint: 10, run: (p, ir) => specGapReportPass(p, { circleIRResults: ir }) },
-    // Sprint 11 — Documentation/API Health
-    { name: 'deprecated-usage', sprint: 11, run: (p, ir) => deprecatedUsagePass(p, { circleIRResults: ir }) },
-    { name: 'throws-mismatch', sprint: 11, run: (p, ir) => throwsMismatchPass(p, { circleIRResults: ir }) },
-    { name: 'inconsistent-naming', sprint: 11, run: (p, ir) => inconsistentNamingPass(p, { circleIRResults: ir }) },
-    { name: 'deprecation-no-replacement', sprint: 11, run: (p, ir) => deprecationNoReplacementPass(p, { circleIRResults: ir }) },
-    { name: 'doc-coverage', sprint: 11, run: (p, ir) => docCoveragePass(p, { circleIRResults: ir }) },
-    // Sprint 12 — Patterns & Performance
-    { name: 'inconsistent-param-order', sprint: 12, run: (p, ir) => inconsistentParamOrderPass(p, { circleIRResults: ir }) },
-    { name: 'inconsistent-error-handling', sprint: 12, run: (p, ir) => inconsistentErrorHandlingPass(p, { circleIRResults: ir }) },
-    { name: 'unnecessary-object-hotspot', sprint: 12, run: (p, ir) => unnecessaryObjectHotspotPass(p, { circleIRResults: ir }) },
-    // Sprint 12 — Agent Security
-    { name: 'cross-skill-interaction', sprint: 12, run: (p, ir) => crossSkillInteractionPass(p, { circleIRResults: ir }) },
-    // audit-trail is a meta-pass — runs last with all results
-];
-// ---------------------------------------------------------------------------
-// Report formatting
-// ---------------------------------------------------------------------------
-const TIER_ICONS = {
-    VERIFIED: '[VERIFIED]',
-    PASSING: '[PASSING]',
-    ADVISORY: '[ADVISORY]',
-    FAILING: '[FAILING]',
-    BLOCKED: '[BLOCKED]',
-};
-function severityIcon(severity) {
-    switch (severity) {
-        case 'critical': return 'CRIT';
-        case 'high': return 'HIGH';
-        case 'medium': return 'MED ';
-        case 'low': return 'LOW ';
-        case 'info': return 'INFO';
-        default: return '    ';
-    }
-}
-function formatTrustReport(passResults, compositeScore, tier, durationMs, scoreComponents) {
-    const lines = [];
-    lines.push('===============================================================');
-    lines.push('                     TRUST SCORE REPORT');
-    lines.push('===============================================================');
-    lines.push('');
-    // Composite score + tier
-    lines.push(`  Score: ${compositeScore}/100   Tier: ${TIER_ICONS[tier]} ${tier}`);
-    lines.push(`  Time:  ${(durationMs / 1000).toFixed(2)}s`);
-    lines.push('');
-    // Score components (v2)
-    if (scoreComponents) {
-        lines.push('---------------------------------------------------------------');
-        lines.push('  SCORE COMPONENTS');
-        lines.push('---------------------------------------------------------------');
-        lines.push(`  Vulnerability:   ${renderScoreBar(scoreComponents.vulnerability_score)} ${scoreComponents.vulnerability_score}`);
-        lines.push(`  Supply Chain:    ${renderScoreBar(scoreComponents.supply_chain_score)} ${scoreComponents.supply_chain_score}`);
-        lines.push(`  Exfiltration:    ${renderScoreBar(scoreComponents.exfiltration_score)} ${scoreComponents.exfiltration_score}`);
-        lines.push(`  Instructions:    ${renderScoreBar(scoreComponents.instruction_score)} ${scoreComponents.instruction_score}`);
-        lines.push(`  Permissions:     ${renderScoreBar(scoreComponents.permission_score)} ${scoreComponents.permission_score}`);
-        lines.push(`  Secrets:         ${renderScoreBar(scoreComponents.secrets_score)} ${scoreComponents.secrets_score}`);
-        lines.push(`  License:         ${renderScoreBar(scoreComponents.license_score)} ${scoreComponents.license_score}`);
-        lines.push(`  Compliance:      ${renderScoreBar(scoreComponents.compliance_score)} ${scoreComponents.compliance_score}`);
-        lines.push(`  Hygiene:         ${renderScoreBar(scoreComponents.hygiene_score)} ${scoreComponents.hygiene_score}`);
-        lines.push(`  Poisoning:       ${renderScoreBar(scoreComponents.poisoning_score)} ${scoreComponents.poisoning_score}`);
-        lines.push(`  Provenance:      ${renderScoreBar(scoreComponents.provenance_score)} ${scoreComponents.provenance_score}`);
-        lines.push(`  Performance:     ${renderScoreBar(scoreComponents.performance_score)} ${scoreComponents.performance_score}`);
-        lines.push('');
-    }
-    // Per-pass scores
-    lines.push('---------------------------------------------------------------');
-    lines.push('  PASS SCORES');
-    lines.push('---------------------------------------------------------------');
-    for (const result of passResults) {
-        const scoreBar = renderScoreBar(result.score);
-        const findingCount = result.findings.filter((f) => f.severity !== 'info').length;
-        const findingText = findingCount > 0 ? ` (${findingCount} finding${findingCount > 1 ? 's' : ''})` : '';
-        lines.push(`  ${scoreBar} ${pad(result.score.toString(), 3)} ${pad(result.pass, 24)}${findingText}`);
-    }
-    lines.push('');
-    // Findings summary (non-info only)
-    const allFindings = passResults.flatMap((r) => r.findings);
-    const nonInfoFindings = allFindings.filter((f) => f.severity !== 'info');
-    if (nonInfoFindings.length > 0) {
-        lines.push('---------------------------------------------------------------');
-        lines.push('  FINDINGS');
-        lines.push('---------------------------------------------------------------');
-        // Group by severity
-        const bySeverity = ['critical', 'high', 'medium', 'low'];
-        for (const sev of bySeverity) {
-            const findings = nonInfoFindings.filter((f) => f.severity === sev);
-            if (findings.length === 0)
-                continue;
-            lines.push('');
-            lines.push(`  ${severityIcon(sev)} (${findings.length}):`);
-            for (const f of findings) {
-                const loc = f.location?.file ? ` [${f.location.file}${f.location.line ? ':' + f.location.line : ''}]` : '';
-                lines.push(`    - ${f.message}${loc}`);
-            }
-        }
-        lines.push('');
-    }
-    // Info summary counts
-    const infoFindings = allFindings.filter((f) => f.severity === 'info');
-    if (infoFindings.length > 0) {
-        lines.push('---------------------------------------------------------------');
-        lines.push(`  INFO: ${infoFindings.length} informational finding${infoFindings.length > 1 ? 's' : ''} (AI-BOM, SBOM, VEX, etc.)`);
-    }
-    // Artifacts summary
-    const artifacts = passResults.filter((r) => r.artifacts && Object.keys(r.artifacts).length > 0);
-    if (artifacts.length > 0) {
-        lines.push('');
-        lines.push('---------------------------------------------------------------');
-        lines.push('  ARTIFACTS');
-        lines.push('---------------------------------------------------------------');
-        for (const r of artifacts) {
-            for (const key of Object.keys(r.artifacts)) {
-                lines.push(`  - ${key} (from ${r.pass})`);
-            }
-        }
-    }
-    lines.push('');
-    lines.push('===============================================================');
-    return lines.join('\n');
-}
-function renderScoreBar(score) {
-    const width = 20;
-    const filled = Math.round((score / 100) * width);
-    return '[' + '#'.repeat(filled) + '-'.repeat(width - filled) + ']';
-}
-function pad(str, len) {
-    return str.padEnd(len);
-}
-// ---------------------------------------------------------------------------
-// File collection + CircleIR analysis
-// ---------------------------------------------------------------------------
-function collectSourceFiles(dir, include, exclude, maxFiles = 1000) {
-    return collectFiles(dir, { include, exclude, maxFiles })
-        .map(f => ({ path: f.path, language: f.language }));
-}
-async function runCircleIRAnalysis(files, quiet, analyzerOptions) {
-    const results = [];
-    for (const file of files) {
-        try {
-            const content = fs.readFileSync(file.path, 'utf-8');
-            const ir = await analyze(content, path.basename(file.path), file.language, analyzerOptions);
-            results.push(ir);
-        }
-        catch {
-            // Skip files that fail analysis — don't block trust scoring
-        }
-    }
-    return results;
-}
-export async function runTrustAnalysis(targetPath, quiet, analyzerOptions, trustDisabledPasses, include = [], exclude = [], maxFiles = 1000) {
-    const overallStart = Date.now();
-    // Step 1: Initialize circle-ir analyzer
-    if (!quiet) {
-        console.error('  Initializing analyzer...');
-    }
-    await ensureAnalyzerInitialized();
-    // Step 2: Collect source files and run CircleIR analysis
-    const sourceFiles = collectSourceFiles(targetPath, include, exclude, maxFiles);
-    if (!quiet) {
-        console.error(`  Analyzing ${sourceFiles.length} source file(s) with CircleIR...`);
-    }
-    const circleIRResults = await runCircleIRAnalysis(sourceFiles, quiet, analyzerOptions);
-    if (!quiet) {
-        console.error(`  CircleIR analysis complete: ${circleIRResults.length} file(s) analyzed`);
-    }
-    // Step 3: Filter trust passes based on config/CLI disable list
-    const activePasses = trustDisabledPasses && trustDisabledPasses.length > 0
-        ? TRUST_PASSES.filter(p => !trustDisabledPasses.includes(p.name))
-        : TRUST_PASSES;
-    if (!quiet && trustDisabledPasses && trustDisabledPasses.length > 0) {
-        console.error(`  Disabled trust passes: ${trustDisabledPasses.join(', ')}`);
-    }
-    // Step 4: Run active trust passes (forwarding CircleIR to eligible passes)
-    const passResults = [];
-    for (const pass of activePasses) {
-        if (!quiet) {
-            console.error(`  [${pass.name}] running...`);
-        }
-        const result = await pass.run(targetPath, circleIRResults);
-        passResults.push(result);
-        if (!quiet) {
-            const findingCount = result.findings.filter((f) => f.severity !== 'info').length;
-            console.error(`  [${pass.name}] score: ${result.score}  findings: ${findingCount}  (${result.durationMs}ms)`);
-        }
-    }
-    // Run audit-trail meta-pass last (pass a snapshot, not the live array)
-    if (!quiet) {
-        console.error(`  [audit-trail] running...`);
-    }
-    const auditResult = await auditTrailPass(targetPath, { passResults: [...passResults] });
-    passResults.push(auditResult);
-    if (!quiet) {
-        console.error(`  [audit-trail] score: ${auditResult.score}  (${auditResult.durationMs}ms)`);
-    }
-    // Compute weighted composite score (v2)
-    const trustResult = computeTrustScore(passResults);
-    const totalDuration = Date.now() - overallStart;
-    return { passResults, trustResult, totalDuration };
-}
-// ---------------------------------------------------------------------------
-// Main command
-// ---------------------------------------------------------------------------
-export async function executeTrust(args) {
-    const targetPath = args.directory || process.cwd();
-    if (!fs.existsSync(targetPath)) {
-        console.error(`Error: Path not found: ${targetPath}`);
-        return 1;
-    }
-    if (!args.quiet) {
-        console.error(`Running trust score analysis on ${targetPath}...`);
-    }
-    const eff = getEffectiveOptions(args, targetPath);
-    try {
-        const { passResults, trustResult, totalDuration } = await runTrustAnalysis(targetPath, args.quiet === true, eff.analyzerOptions, eff.trustDisabledPasses, eff.include, eff.exclude, args.maxFiles ?? 1000);
-        const compositeScore = trustResult.score;
-        const tier = trustResult.tier;
-        // Output based on format
-        if (args.format === 'json') {
-            // Strip embedded passes from audit log to avoid bloated duplicate data
-            const jsonResults = passResults.map((r) => {
-                if (r.pass === 'audit-trail' && r.artifacts?.auditLog) {
-                    const { passes, ...summaryOnly } = r.artifacts.auditLog;
-                    return { ...r, artifacts: { ...r.artifacts, auditLog: summaryOnly } };
-                }
-                return r;
-            });
-            const output = JSON.stringify({
-                score: compositeScore,
-                tier,
-                vulnerability_score: trustResult.vulnerability_score,
-                supply_chain_score: trustResult.supply_chain_score,
-                exfiltration_score: trustResult.exfiltration_score,
-                instruction_score: trustResult.instruction_score,
-                permission_score: trustResult.permission_score,
-                secrets_score: trustResult.secrets_score,
-                crypto_score: trustResult.crypto_score,
-                license_score: trustResult.license_score,
-                compliance_score: trustResult.compliance_score,
-                hygiene_score: trustResult.hygiene_score,
-                poisoning_score: trustResult.poisoning_score,
-                provenance_score: trustResult.provenance_score,
-                performance_score: trustResult.performance_score,
-                passResults: jsonResults,
-                totalDurationMs: totalDuration,
-                timestamp: new Date().toISOString(),
-            }, null, 2);
-            if (args.output) {
-                fs.writeFileSync(args.output, output);
-                if (!args.quiet) {
-                    console.error(`Output written to ${args.output}`);
-                }
-            }
-            else {
-                console.log(output);
-            }
-        }
-        else if (args.format === 'sarif') {
-            const { generateTrustSARIF } = await import('../../trust/sarif.js');
-            const output = generateTrustSARIF(passResults, compositeScore, tier);
-            if (args.output) {
-                fs.writeFileSync(args.output, output);
-                if (!args.quiet) {
-                    console.error(`SARIF output written to ${args.output}`);
-                }
-            }
-            else {
-                console.log(output);
-            }
-        }
-        else if (args.format === 'markdown') {
-            // Badge SVG output
-            const svg = generateBadgeFromScore(compositeScore);
-            if (args.output) {
-                fs.writeFileSync(args.output, svg);
-                if (!args.quiet) {
-                    console.error(`Badge written to ${args.output}`);
-                }
-            }
-            else {
-                console.log(svg);
-            }
-        }
-        else {
-            // Summary format with score components
-            const report = formatTrustReport(passResults, compositeScore, tier, totalDuration, trustResult);
-            if (args.output) {
-                fs.writeFileSync(args.output, report);
-                if (!args.quiet) {
-                    console.error(`Output written to ${args.output}`);
-                }
-            }
-            else {
-                console.log(report);
-            }
-        }
-        // Exit with error code if score below 40 (FAILING tier)
-        if (args.exitCode && compositeScore < args.threshold) {
-            return 1;
-        }
-        return 0;
-    }
-    catch (error) {
-        console.error('Error:', error instanceof Error ? error.message : error);
-        return 1;
-    }
-}
-//# sourceMappingURL=trust.js.map